WordPress installations received a security upgrade on Friday to patch a number of vulnerabilities. The update to version 3.3.2, as well as 3.4 Beta 3, fixes issues in file uploaders Plupload and SWFUpload, and Adobe Flash embedding tool SWFObject. The new version also comes with fixes for several privilege escalation and cross-site scripting bugs. Cyber criminals heavily use vulnerable WordPress sites to spread malware, and they may have been utilized in the recent Flashback trojan attacks on Mac OS X systems.
SiliconAngle reports that more companies have been conducting purple team cybersecurity threat evaluations, with security penetration testing firm SpecterOps being the latest to create a collaboration between its offensive and defensive cybersecurity teams in testing and defending corporate systems.