The company Wordfence has analyzed the web servers of the firm Mossack Fonseca (the Panamanian law firm) and have discovered that the access to the documents of the great fortunes, potential tax evaders, may have been due to a WordPress plugin, already an old version of Drupal, both with major vulnerabilities. And it is that Mossack Fonseca has a WordPress website as information about its services and another website based on Drupal as a portal for its clients, where it can share information with them.

The Drupal version had to be updated as it had serious security problems, moreover, web security experts recommended installing Drupal from scratch, however Mossack Fonseca did not update its version or create a new website, and its website was highly vulnerable for a year, more than enough time to access your data.

On the other hand, there is the fact that WordPress had a plugin, the Revolution Slider, which also had security vulnerabilities, making it possible for an attacker to access the web server and get all kinds of files from said server.

The moral is clear, right? CMS that depend on different plugins / modules, are not safe, are outdated, it is not known who created them, they do not always interact well with each other….

At Rana Negra we create your website safely and exclusively to your needs, programming with the latest technologies so that your website is safe, stable, functional and fast .