Is WordPress Secure? Great read on the sec state of WP from past to present.
You have no doubt heard about it — the latest WordPress security scare has been publicized everywhere from the BBC, to NBC, to Technorati. A giant botnet made up of “tens of thousands” of computers has attacked an enormous number of vulnerable WordPress websites.
This comes on the back of other worrying recent news (such as the major security vulnerability present in two popular caching plugins) and more historical events (such as the TimThumb saga). It would seem that WordPress has endured its fair share of high profile security scares over the past few years. More >