All I can say is, if you are running a website of ANY description, keep the software running it up to date!
Has been many reports of peoples sites (primarily WordPress based ones) being infected with Malware, via plugins etc or exploits via out of date software.
These can be easily circumvented by the following :
- Keep your software up to date
- Only install known/trusted software
- Keep regular backups
Most popular packages these days will also have some form of security plugin that will monitor your files etc to inform you of any potential issues, such as “Wordfence” for WordPress.
Do this and hopefully your site will remain safe…..