IDG Answers is a community of experts who are passionate about technology. Ask a question or answer one below.
Microsoft just released a patch a day or so ago that plugs the hole exploited by Flame (or at least claims to). Apparently Flame used a method that let it falsify a MS digital credential so that it looks like an update for enterprise users with remote desktops. And it was around since at least 2010. Which is nice.
I have read conflicting accounts of how serious of a development Flame really is. Kaspersky has been ringing the alarm bells very loudly, although they did note that it was a very targeted piece of malware. There is always a risk of something targeted getting "off-target" and causing all kinds of unintended consequences. Still, the risk to most companies is so small as to be negligible. We just aren't its target. The ironic thing is that overall security is probably increased by the discovery, since yet another vulnerability is addressed. Total security is like trying to squeeze a handful of water; it will never be accomplished.