Hardly two and a half months have passed since 2017 (the year, not the WordPress version), and the world has already seen three WordPress security updates, the last of which hit the dashboards on March 6.
Methodology of cyber attacks has two main options. Either the attacker deliberately picks up a specific website he wants to hack, or he tries to target the widest possible number of websites which happen to have a certain kind of malfunctioning or just a weak spot, aiming to abuse that spot.
Users of the most popular CMS in the world suffered a great security threat during the past three weeks. More precisely, the users who didn’t update their software to version 4.7.2.