Xbox, well. It seems, that when Xbox was left to do its own thing away from Big Daddy Microsoft Main, it created a huge devolper market. It also, gave indie devolpers a shot at something real.
Then, Microsoft main got involved and drove the devolpers into the arms of Playstation.
Its not surprising that this was flaw. Almost all programmers are not taught a single thing about coding for application security. Samsung, and Android have had carrier and company pre installed applications with gaint hole in them.
Jan. of this year, Knox has a hole in it that allows for the reading of encrypted information sent from applications. See that article here.
It goes back to the ease of most CIS, and 4 year computer degrees at Colleges in American today. Most student spend 4 years at a college and still cant code when they get out, or troubleshoot with simple CMD commands in a network. KNOW NOTHING ABOUT LINUX, or basic commands.
So that has lead companies like Microsoft, Apple, Google, and Dell, to have to test new hires to see if they can do what they say they can do. I have been networking for a long time, and still everyday I get my but kicked and learn something new.
But, when you have a work force staffed by people who either dont care, and dont know enough to be in charge of a application team, what rolls out is really poor, and buggy apps.
13000 Federal IT Security Jobs went unfilled last year, becasue the government couldnt find people with the skills needed to do the jobs. CNN reports here. on some of that.
Overall, its tough to do IT security the correct way.