For those that missed it in the article....
While it is true that an AV solution should catch the infected file before it executes it's payload, the questions that need to be asked are;
"Why does Microsoft still insist on the failed concept of security through obscurity?"
"Why the fuck is it possible for a word processing document to reach that deeply into the registry and affect those changes?"