Ars Technica: Unpatched US government website gets pwned by pro-Iran script kiddie. “The FDLP website is no stranger to defacement attacks. As a brief analysis of the attack by a security researcher with the Twitter username @sshell_ noted, the site has been defaced twice in the last 10 years—most recently in 2014, when it was replaced with an electronic dance music video featuring a dancing cat. Based on a fingerprint of the site’s files, the site—based on the Joomla content management system—had not had its code updated since 2012.” 2012???!!!