@kevglobal @Ghost I feel that - we just had to clear a malware infection on one of the student WordPress sites. That said, with no plugins in the WP sense, and a generally smaller attack surface, so far the Ghost-specific security issues have been negligible.