Ping isn't really exploitable, it's only paranoia. Yes theoretically it could be used to dos your router, but realistically anyone with a hosted box can do that anyway.
"The breakdown of security flaws in browsers, the primary attack vector for malware - is as follows for 2009:" is bollocks as well, there is no emphasis on what kinda of security issue was there, all of firefoxes were minor cookies and crosssite scripting, while IE had one remote executable code one, it also doesn't show how long it took to fix the bugs when found. Popular products will have more bugs found, it's the nature of the beast.