Linux and open source used to be 99% secure — or so we thought. We laughed at the poor, hapless users of Windows, an OS that seemed to suffer a new exploit hourly. We were smug and thought ourselves protected by Linux’s superior design, with security built-in and not added as an afterthought. Most of all, we thought ourselves protected by the thousand upon thousands of eyes that were pouring over the code and making sure that any vulnerabilities that snuck through were caught by the white hats long before the black hats had a clue.