Do Antivirus Companies Whitelist NSA Malware? - InformationWeek:
I predict that in 2014 every major newspaper and magazine will perpetuate, to the detriment of data security and human understanding, the grossly erroneous notion that "for an antivirus firm to spot malware, it first needs to have seen the malware, recognized that it's malicious code, and written a corresponding virus signature for its products."
The fact that this is simply not true, and has not been true for many years, will not deter people from repeating it, over and over.
A bit like Autotrend saying that cars cannot be started without first engaging the crank handle.