The story http://www.guardian.co.uk/business/s...145536,00.html
Actually, they didn't discover it
Windows update called for I think.The company, which learned about the flaws more than six months ago from researchers, said the only protective solution was to apply a repairing patch it offered on its website. It assessed the threat as "critical", its highest rating.
Security executive Stephen Toulouse said the flawed software was "an extremely deep and pervasive technology in Windows," and urged customers to apply the patch immediately
BTW, this is NOTHING to do with the Mydoom backdoor."This is one of the most serious Microsoft vulnerabilities released," said Marc Maiffret, of eEye Digital Security in California, which discovered the flaws. "The breadth of systems affected is probably the largest ever. This is something that will let you get into internet servers, internal networks, pretty much any system."
Mr Maiffret said systems that control important power or water utilities were vulnerable. He predicted hackers will try to unleash an internet infection within weeks.