As Forbes article discusses:
Update your plugins and widgets when they are vulnerable, use complex passwords, and otherwise use good security methodologies.
It is the basics that people are not doing. What is easy to use makes it less secure, thus requiring more effort by the user or administrator to make sure it is secure and safe.
I know this is an old attack (from April 13th, 2013) but the basic principles apply, as security methods never go out of style, and old attacks come around again and again.
Contact Us to discuss.