There's an OpenSSH exploit rumored to be out in the wild. Details on this vulnerability are scarce and it may be a rumor, but everyone is highly encouraged to update to the latest version of 5.2(or RHEL's backport of 4.3).

It's also advisable that those of you with firewalls to have them adjusted to block port 22 to all but your support staff and ours. Anyone without a firewall is encouraged to get one.

Also, keep your backups up to date and in a location which is secured and can not be overwritten, manipulated, or deleted.