I have recently read that our FBI has stated
“If you run a self-hosted WordPress website undesirables (name who shall not be mentioned – pm me for my source) types could exploit via un updated plugins”.
It’s always a good idea to update your themes, plugins and WordPress installation regularly.
Failing to do so can definitely leave holes open for hackers.
This is especially true for core WordPress updates – it’s a popular system, and people are constantly trying to exploit it.
Luckily, WordPress has an extremely active community who are constantly improving it and fixing any security issues, so if you keep things updated and have decent hosting (GoDaddy shared hosting is always getting hacked in my experience), you should be fine!
The “technology” is still quite new as WordPress only just introduced the feature for core updates.
I’m sure themes and plugins will start to implement them sometime soon – although it can also be risky because theme and plugin updates can sometimes cause problems, and it sucks to find your website crashed in the morning and finding out it’s been down all night as you were sleeping.
When things like the above get solved, we’ll start seeing it a lot more 🙂