Following the news that thousands of WordPress sites have been threatened by PHP Everywhere RCE flaws – PHP Everywhere RCE flaws threaten thousands of WordPress sites (bleepingcomputer.com) – Jamie Akhtar, co-founder and CEO of CyberSmart explains the importance of regular patches and the danger of zero-day vulnerabilities.
This story is a perfect illustration of how dangerous zero-day vulnerabilities can be. Fortunately, in this case, it looks as though WordPress’s developers discovered the flaws before the bad guys. But it could have been a very different story had the hackers got there first.
It also demonstrates the importance of regular patching and updates to businesses that use tools like WordPress. Failing to do so can unnecessarily expose your business to cyber threats. After all, an update is only as good as the number of users that download it.