We are 5-10 years behind or the feds are? If the NSA did this attack (and gave it their all) it would have found a way to fingerprint the OS people were using and target a specific payload to them, that then fingerprinted its environment to see if there was isolation or other security techniques, and then obtained other payloads to break through the isolation and disable each layer of security one at a time, prior to sending the information back to them. And it would have all been zero days, obfuscated and encrypted and probably never would have been detected in the first place. The FBI used a month old javascript exploit to deliver a payload that was targeted specifically to Windows 7 and to a lesser extent Windows in general, and it didn't even attempt to break out of isolation or disable any security features. The NSA has fucking cyber missles essentially, they will blow their way through ten layers of isolation in the blink of an eye. The FBI has always used already patched exploits, I have never read of a case where they did an attack like this with an actual 0-day, let alone tried to break out of layers of security. A Chinese advanced persistent threat threat ?