We face quite a bit of patching work this week. Microsoft has released numerous patches addressing multiple vulnerabilities including some fairly serious issues with DHCP. Cisco has released several patches including a specific patch addressing a “default password” vulnerability in CSPC – the platform collector for device management. Adobe has also released multiple patches across their application suites including some patches specific to Photoshop. To pile on a little more, WordPress has released patching in version 5.1.1 to address possible unauthenticated code execution flaws.
All of these updates and patches come on the heels of the recent Google Chrome update that so many had to address immediately due to “in the wild” exploits.
Please review your environments, including your third party applications and web server platforms, and patch accordingly.
Please review your WordPress installations and patch accordingly.
I stumbled across this article earlier today and believe it provides a wonderful starting point for WordPress security. Take a look, bookmark it for future reference, and enjoy!
This is exciting on several levels. As a user of WordPress I am pleased. As a proponent of the Let’s Encrypt Project and as an IT security professional, I am ecstatic. This is yet another important step toward a more secure browsing experience for all.
Given the prevalence of WordPress deployments, these patches should always warrant consideration. Please review and patch as appropriate.