And when the people, terrified so much they can hardly quell the shaking in their hands to hang out their Christmas stockings, ask "how can we be safe?", bang comes the answer (it's always the same): "buy our product x, y or z."
It happens every year and yet people are silly enough to swallow this stuff and not look for the cause instead of the effects which is what the security companies offer to help them fix.
No security company will come out and talk about the terrible security in Microsoft Windows. No, they all have a vested interest in keeping mum and talking about "computer worms" and not Windows worms. The worse things get, the better for their bottomline, so who would bite the hand that feeds them?
Yet, which anti-virus company, which security company, which consultant, will strip things to their barebones and tell the public the unvarnished truth?
Don't expect anyone to break the unspoken vow of silence that the IT industry has maintained from the time when Windows was pushed on the unsuspecting masses and became the most widely used desktop operating system on the planet.
This year, we even have one of these worthies proclaiming that free software is worse than software that needs to be bought. Only the ignorant would buy this myth, but it is still propagated. I speak from personal experience, not from anecdotal experience.
Given that you have second-rate products being brought in to fix third-rate operating systems, what hope in hell does the average punter have? Propaganda and astro-turfing are both at an all-time high and profits are all that matter to the companies pushing various lines to credulous journalists on the make.
And then we complain that less people are buying newspapers or reading what we write online!