Why you should always have the newest WordPress
In the last few weeks, the WordPress.org team discovered three critical security vulnerabilities, which have all been taken care of thanks to the WordPress’s timely patchwork. You can read about the issues and how they were fixed on WordPress’s release posts for 4.2.1 and 4.2.2. Two of these vulnerabilities make it much too easy for bad apples to compromise your site.
If you’re interested, you can read in detail about every security update WordPress has ever released.
WordPress security is important
Even giant corporations like Sony, AOL, and eBay have had some major security leaks—and they have dedicated security staff. If you want to keep your data safe, the least you can do is upgrade WordPress whenever updates are available.
You can even configure automated background updates for minor releases to make things easier for yourself.
You’re not safe until you upgrade WordPress
We just want to make sure you’re taking the proper precautions! These security issues only go away after you’ve upgraded. So if you haven’t already, please take the WordPress team’s suggestion seriously and upgrade as soon as you can.
WordPress plugins can breach security, too
If you’re using lots of plugins on your WordPress install, we’d recommend installing Plugin Vulnerabilities, which is a plugin that keeps tabs on your other WordPress plugins to make sure your site remains safe and secure.
There’s also the WPScan Vulnerability Database, which you can subscribe to via email.
On a lighter note: WordPress 4.2 brought Emoji to WordPress!
If you hadn’t already heard, WordPress 4.2 Powell includes extended character support, meaning you can now use Chinese, Japanese, and Korean language characters, as well as hieroglyphs, math, and music symbols—and Emoji. Score.