Note the motivation here: this was being used to defraud Google for advertising revenue. Would Google have taken prompt action if it only hurt individuals?
Let's see, you can't trust hardware, operating systems, office applications and browsers. Some security software is also suspect. Some updates will brick some machines. That pretty well covers the waterfront.
Have a nice day!
