Following on from my earlier post on EMET, WDAG and the 1709 release on Windows, here is some Q&A on the topic.
https://www.ncsc.gov.uk/cyberthreat Supply chain cyber attacks are somewhat below the radar, rarely get publicity, and can be very damaging.
Some time ago BCS launched the Certificate in Information Security Management Principles, or CISMP. It offers a sensible syllabus and is backed by an appropriate non-profit: BCS.
A severe bug reported in WordPress 4.9.3 is getting greater coverage, due to a faulty auto-update feature.