Storyman - 3:24 pm on Nov 1, 2013 (gmt 0)
Is there any CMS that is totally secure?
For the past several months I've been using the Wordfence plugin--both the free and paid version. They provide security notices about unsafe plugins and give you a heads up on how to spot vulnerable plugins and what to do about it. I cannot praise Wordfence enough.
Best of all it notifies you when WordPress needs to be updated as well as the plugins.
There is one sure way to get hacked and that is not to keep everything up-to-date. As you probably already know bots are scouring the Internet looking for which version of a CMS that is installed and once vulnerabilities become known with a particular CMS they attack those sites.