Username or EmailPassword
That manager certainly isn't very convincing--it's painfully clear he's a PR flack and not someone who's at all informed on the issue. (Microsoft's UK managers seem to have demonstrated an above average ability for putting there foot in their mouths. There was that thing about comparing Win7 to the Mac a few months ago, and I vaguely recall something else earlier last year that I can't quite place.)
Still I think it's overreaching to say Microsoft doesn't give a damn about security. The vulnerability does exist in all major versions, but DEP and Protected Mode do neutralize any attacks at this point, and it's going to be far harder to contruct an effective exploit against browsers in which those are enabled. That's not spin, but simply the defense in depth strategy doing what it's supposed to do: provide additional layers of protection when one fails.