WordPress 3.8.2 is now available. This is an important security release for all previous versions and you should update immediately.
If you run a WordPress site, and are trying to make some money through it, think twice before installing "free" versions of premium plugins.
DNS and NTP servers are not the only publicly accessible resources that can be misused to amplify DDoS attacks.
Rublon provides automatic two factor authentication for web applications.
During an internal assessment, Duo Security found a vulnerability in their popular WordPress two-factor authentication plugin that completely bypasses the security measures provided by it.