The newspaper-in-question's response is a great read (note the first letter of each paragraph too): http://www.fredericknewspost.c...

The last sentence of the article's summary is completely wrong. I am one of the "original researchers" for this issue (p42.us is my website). The patches that have been issued by Microsoft up to this point are successful at eliminating the primary security vulnerability, to the best of our knowledge. The main security vulnerability described in our white paper was disclosed to Microsoft last fall and Microsoft fixed the issue in January 2010. The one case that has not been addressed by the filters is very rare and extremely unlikely to be found on a given websites.

ironic, this coming from a man who 'went into business briefly in 1974 to build "blue boxes" that allowed illicit free long distance calls' (so says wikipedia)