Yes this story rings a bell. The news story I heard was a PC was purchased from PC World (Large UK chain store), unpacked from the boxes and connected to the internet. Within 20 minutes the machine had been compromised. On a similar note check out Security Report: Windows vs Linux, Open Source is Inherently Dangerous, reference 3.