Recently, WordPress Development team released WordPress 3.1.4 and the release candidate 3 for WordPress 3.2.
(prHWY.com) July 4, 2011 - Albuquerque, NM -- Albuquerque, NM, United States - Recently, WordPress Development team released WordPress 3.1.4 and the release candidate 3 for WordPress 3.2. The company had earlier planned to release WordPress 3.2 by the end of June. WordPress 3.1.4 addresses an issue, which could allow users at editor-level to gain additional access to the site. Developers have also resolved several other security issues and integrated several hardening measures to strengthen the platform. Millions of websites worldwide including major media sites use the online blogging and publishing platform. WordPress, which started as a blogging tool has steadily evolved as a content management system. The WordPress.org and WordPress.com have also faced several security issues in the recent times. Recently, WordPress alerted users that attackers had modified plugins such as AddThis, WPtouch, and W3 Total Cache to include backdoors in them. Security professionals were successful in updating the affected plugins. WordPress.com, which remains unaffected with plugin incident, suffered distributed denial-of-service attack earlier in the year.
The release candidate 3 for WordPress 3.2 incorporates fixes for all vulnerabilities addressed in 3.1.4, mitigates minor RTL JavaScript issues, and includes fixes for user interface. Developers have urged users to test the release candidate on a non-live test site, and communicate issues and bugs to the WordPress development team. The minimum requirements for version 3.2 now stand at PHP 5.2.4 and MySQL 5.0.
Millions of users use various WordPress based platforms. As such, there always remains threat of compromise of user accounts. Organizations using WordPress platform must immediately to the latest version to avoid exploitation of security flaws. Operational issues and lack of prioritization often result in delays in implementing security updates. Cybercriminals take advantage of the time lag in issue of an update and implementation by end-users to exploit security flaws. Professionals qualified in masters of security science and
computer science degree may enable organizations to identify and prioritize security updates and patches.
The vibrant and ever-evolving security threats pose challenge for both developers and end-users. While developers must constantly strive to detect and resolve security issues, end-users must have appropriate policies and procedures in place to deal with security challenges. Organizations must train employees on cyber security practices and incident management. Employees may take advantage of
online degree and e-learning programs to enhance their security awareness.
Participation in security conferences, and undertaking online university degree programs and security certifications may help security professionals in staying abreast of latest happenings in security industry and enhancing their technical expertise.
Contact Press
EC-Council
Website:
http://www.eccuni.us
Email: iclass@eccouncil.org
Tel: 505-341-3228
EC-Council University is based in Albuquerque, New Mexico and offers Master of Security Science (MSS) degree to students from various backgrounds such as graduates, IT Professionals, and military students amongst several others. The MSS is offered as a 100% online degree program and allows EC-Council University to reach students from not only the United States, but from all around the world.
EC-Council is a member-based organization that certifies individuals in cybersecurity and e-commerce skills. It is the owner and developer of 16 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and EC-Council Certified Security Analyst (ECSA)/License Penetration Tester (LPT). Its certificate programs are offered in over 60 countries around the world.
EC-Council has trained over 80,000 individuals and certified more than 30,000 members, through more than 450 training partners globally. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. federal government via the Montgomery GI Bill, Department of Defense via DoD 8570.01-M, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates the global series of Hacker Halted security conferences.
###