> It's absurd to say a company should not blow the whistle on a sophisticated attack when that companys job is just that!
They should definitely do it.
They should also acknowledge that they did a shoddy job. They let the malware run unchecked for several years. It is clear that the safeguards they had in place did not work, not for protection, but especially for detection.
Instead, they chose to boost the image of their own products and bash a third party vendor with a questionable reasoning.
I've not idea to what extent it's possible to have a durable trojan on iOS (probably only the makers of such trojans do know).
It's absurd to say a company should not blow the whistle on a sophisticated attack when that companys job is just that!