The article itself almost objectively describe the problem. I have two huge pain about that: 1. The title. It is misleading, and builds upon the past scandal which have not been really proven to be true or justified. 2. The article mentions in the very last sentence that the function to inject the script has been enabled by the user.
Apart from that it's a good and informative article.