A month ago there was much talk about outdated WordPress and Drupal sites being the cause for the "Panama Papers" leak at Mossack Fonseca. There are plenty of articles that claim this was the reason:

What I have not found is any reference from the Drupal community. The Mossack Fonseca client portal running Drupal still online, but seems to have been upgraded from the vulnerable version.

Maybe we'll get information later on from investigations - but up until then search results for Drupal Panama Papers leaves Drupal as a likely subject for the Mossack Fonseca leak, the largest single incident of exposing private documents to the world.

I was hoping for some reaction on this from the Drupal project leadership on the matter. If not for anything else, then to push awareness of the importance keeping installations up to date.