So Mike Nash says Redmond is getting better at security. His point is that with fewer announced vulnerabilities in XP SP2 and faster response time they are addressing the problem. The thinng is that lots of spyware is written that exploits patched vulnerabilities yet has tremendous penetration accordinng to Webroot's State of Spyware report. The byteverify vuln has been patched for over a year, the iFrames vulns over 6 months. With more than 50% of corporate PC's still not up to SP2 and some huge number of home PC's not patched at all (got Windows 98 at home?) there is a huge problem that Microsoft is not addressing by "gettig better".