From the article:
Apple has been aware of the vulnerabilities in iMessage since November, when the JHU researchers reported them privately. The company has fixed the issues in recent iOS releases.
So yes, you're right: "Apple patches serious flaws in iMessage crypto" would have made a better headline, but, you know, it's Slashdot. If it's not a click-baity headline chock full of Slashtard trigger words, nobody would comment. Or even read TFS.
What's even better is that this news is LITERALLY 5 months old - OS X 10.11.4, which contained this fix (https://support.apple.com/en-us/HT206167), was released on March 21, 2016. The summary and the article make it sound like Apple's been sitting on this stuff for a year. In actuality, rolling out the security patch took them about 4 months, start to finish. Not the 9 months TFA and TFS imply.
And in related news - my comment is more informative than both Slashdot and "OnTheWire" were able to be. As a software engineer, I have zero qualifications or training to be a reporter. Yet I managed to provide more factual information in this discussion than the "reporters" did with their "reporting." At what point did we stop expecting even rudimentary fact checking and accuracy in our "News"?
There aren't any standards left in journalism these days. The "News" is scripted entertainment. Facts are sometimes reported when they fit into the script.