WordPress REST API Vulnerability

A vulnerability in the WordPress REST API is being exploited by hackers to deface and remote execute scripts on sites running WordPress 4.7 adn 4.7.1. The issue has been fixed in version 4.7.2.
WordPress 4.0.1 Critical Update

WordPress has released 4.0.1 as a security update addressing issues with the CMS core. This is a critical update so upgrade today.
WordPress Security with OpenSSL Heartbleed Vulnerability & JetPack
WordPress security double whammy! Open SSL Heartbleed vulnerability and exploits in the JetPack plugin. Read how to fix the problems & secure your website.
WordPress Security Best Practices

Slides from the WordPress Sydney meetup group talk on WordPress Security Best Practices.
WordPress Websites Under Attack!
Over the past couple of weeks we’ve seen a huge increase in attacks on WordPress websites from automated bot-nets. The “brute-force” attack is on-going and many hosting providers are having to put measures in place to mitigate any potential breaches.