If ever there has been a reason to re-check your security setup, in particular user ‘roles’ in WordPress it’s now; as the Information Commissioners Office (ICO) issues a monetary penalty (fine) of £400,000 against a UK firm who failed to take appropriate steps to secure its customers and employees personal data.
The company which describes itself as the largest independant telecommunications retailer in europe, had not updated it’s version of WordPress!
Read the full story: https://goo.gl/BMxTJu
A company as large, well-resourced, and established as Carphone Warehouse, should have been actively assessing its data security systems, and ensuring systems were robust and not vulnerable to such attacks.
“Carphone Warehouse should be at the top of its game when it comes to cyber-security, and it is concerning that the systemic failures we found related to rudimentary, commonplace measures.