-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
[lots of good stuff elided]
It's our fault for not pushing AV on your customers, and it's the AV's
fault for not providing audit data to us, and it's the software
vendors' fault for causing us to have to recommend AV and for AV to
exist. The liability should land on the software vendors.
AV is simply a tool, not a panacea.
In fact, what to do about the hundreds of thousands of compromised
websites/servers that help facilitate this crime?
What about the thousands of malicious rogue DNS servers?
There's enough problem-spaces to point fingers all around...
$.02,
- - ferg