Upsetting news today from GeoEdge, not only is HTML5 not going to prevent drive by infections from ads but it also turns out that Flash was nowhere near as responsible for these infections as we thought.  Hard to say which of those two facts is more upsetting but don't worry, you can still malign JavaScript.  The security problems actually stem from the two advertising standards used on the web, VAST and VPAID which are the vector of infection of the JavaScript code which runs to display the ad on your browser.  Follow the link from Slashdot for a detailed explanation of what is happening. 

"A study from GeoEdge, an ad scanning vendor, reveals that Flash has been wrongly accused of being the root cause of today's malvertising campaigns, but in reality, switching to HTML5 ads won't safeguard users from attacks because the vulnerabilities are in the ad platforms and advertising standards themselves."

Here is some more Tech News from around the web:

Tech Talk