Is anybody thinking on users?
1/ Comodo? Gah, no way. They only care about $$$$$$$$$ revenue, they will be happy to issue anyone with a certificate and even put that on their trusted vendors list as a bonus. Enjoy signing your malware and have it run nicely on systems "protected" by CIS.
2/ Mozilla? Nope, not really. I suspect they get money for including CAs into their browser. CACert.org - still not added despite requested and after years of users complaining. CNNIC (controlled directly by Chinese govt.) got there pretty much silently and after a huge outrage it's still there and no action will be taken apparently. Comodo's root certificates still there despite the previous blunder, and don't hold your breath for them to disappear after this one either.
3/ MS? Hmmmm.... $$$$$$$$$. As long as it pisses off their corporate customers, they will care. Otherwise, meh.