Moodle and Security?

Moodle is an extraordinarily interesting tool which can be used to cost effectively host Online courses/modules. In working with Moodle throughout this semester I find myself asking the question “where is the security”? When I say “Where is the security” I am referring to the fact that Moodle is an open source application and consequently more susceptible to security threats than non-open source software. The documentation I have found in regard to Moodle’s security deficiencies is more addressed at “what you should do in case of system intrusion” and not “what’s being done to prevent it”. It would seem to me that before Moodle can be fully trusted by educators it needs to revamp its security standards. If anyone has any comments on this please feel free to post them bellow.