How could they have the IOS source on a server that is attached on a network that can be accessed by the public internet?? Thats like Coke leaving the formula in a public place hoping no one takes it. They should have had a seperate secret encrypted network (like the DoD SIPERNET) that does not touch the public network. For the cisco developers give them 2 desktops, a special desktop with no ports/drives accessible by the user and is attached to a special private encrypted wan/lan that does not touch the public network physically at any point then one desktop attached to the regular non-secret network which can access the internet etc.. Its not like cisco is cash strapped and cannot have such a system in place