Symantec has been a fly-by-night company for the past decade-plus. They used to produce quality software and products, but then abandoned several of those while telling their customers to go fly a kite. I am unsurprised that Symantec still has crappy management (only such management could allow this situation with certificates to have developed in the first place), and recommend that Google puts the screws (maximally) to Symantec over this. It's time for Symantec to clean house, starting with all its upper management, as they are a disreputable company and have been for a very long time, sadly. Symantec was once tops, but for me it has been bottoms for twenty-plus years. That's a shame.