Mr. Knowitall, because one of the most important part of security warning is where it is. Today 99% of security problems on websites are known problems. E.g. one of the biggest picture service connected to twitter etc - it has a security vulnerability that allows a criminal to execute any procedure on their servers. Any. It means anyone can see your private pictures. The vulnerability is known for more then 2 (two!) years. There are thousands of articles about it. They just don't care.
The website is “free” – they make living on advertising. And TOS is pretty simple – not in favor of user, or course. They are ignorant by choice. It’s not an accidental mistake. They chose not to read those general articles. That's why I see noother way to force them to patch the server.
If you see it - feel free to share
E.g. Google pays people if they send then a notification about security problems. They care. Many other - thsy just don't care.

