diff --git a/_config.yml b/_config.yml
index 5d9fb89..018d410 100644
--- a/_config.yml
+++ b/_config.yml
@@ -21,7 +21,7 @@ google_analytics: "UA-84672381-1" # Google Analytics code
 twitter_username:     SingularityApp
 github_username:      singularityware
 repo: "https://github.com/singularityware/singularity" # The main repo, should not end with slash
-singularity_version: "2.4.2"
+singularity_version: "2.4.5"
 
 # Exclude
 # these are the files and directories that jekyll will exclude from the build
diff --git a/_posts/releases/2018-03-19-release-2-4-5.md b/_posts/releases/2018-03-19-release-2-4-5.md
new file mode 100644
index 0000000..6b76cf4
--- /dev/null
+++ b/_posts/releases/2018-03-19-release-2-4-5.md
@@ -0,0 +1,18 @@
+---
+title:  "Singularity 2.4.5 Release"
+category: releases
+permalink: "release-2-4-5"
+version: "2.4.5"
+---
+
+This is a security-related point release, bringing the following fix thanks to Justin Riley ([@jtriley](https://github.com/jtriley)):
+
+PR<a target="_blank" href="{{ site.repo }}/pull/1387">1387</a>/<a target="_blank" href="({{ site.repo }}/singularity/pull/1397">1397</a> - python: strip "Authorization" header on (urllib) redirects to different domains
+
+The security fix prevents Singularity from leaking credentials if:
+  * You are logging in to a docker registry with credentials
+  * The registry redirects you to a 3rd party host (e.g. S3 for download of layers)
+
+The fix ensures that in this situation the HTTP “Authorization” header is stripped from the redirected request, to prevent leaking of registry credentials to the 3rd party.
+
+For the full release announcement and downloads, please see <a target="_blank" href="https://github.com/singularityware/singularity/releases/tag/2.4.5">the release on GitHub</a>.