Isn't there a saying about glass houses that applies in this instance? What was it?
Look, let's get real. We need to stop with the finger-pointing overall and realize that this is an epidemic that's more than just industry wide.
We need to stop believing that obfuscation achieves security and make collaborative efforts to put products to the test. We need hacking competitions and fearlessness when it comes to having vulnerabilities exposed. It's about improving and reacting to the current climate, not hiding and hoping the big bad monster doesn't get you.
The threat will always exist and untested defenses will always fall before a siege. That simple.
Regarding number two, I find it applaudable to constructively and publicly criticize your own regarding issues.
IT security is getting more and more important, I do find that the industry is constantly lagging behind the attackers. Maybe because we do want to deliver productive features and not defend against unknown hackers.