Maybe so, but he wouldn't be able to remote into my IE8 via driveby since I'm double-sandboxed. I use to fix PCs and seen more then my share of infected PCs and only found one solution and so far it works (sandboxie in a VM XP). My Win7 remains quite safe and since my VM my XP and well as Sandbox all browsing, I'm pretty confident that even my XP VM is solid. Only way to protect a system unfortunately. Just because there are no vulnerabilities with a particular browser doesn't mean one doesn't exist. Via virtualization, any outside attacker has to have intimate knowledge of the system being attached to bypass the sandbox, firewall and other mechanisms and that just won't happen as long as I remain paranoid enough.