"We will never tolerate...
...any attempt, by any organization – government or otherwise – to compromise Chrome users' data"
That's our job.
On Wednesday, Google, Apple, and Mozilla said their web browsers will block the Kazakhstan root Certificate Authority (CA) certificate – following reports that ISPs in the country have required customers to install a government-issued certificate that enables online spying. According to the University of Michigan's Censored …
Perhaps a bit longer than you fear because of the pushback against Kaszakhstan.
On the other hand, governments are not renowned for caring about consequences, so maybe Oz (and the rest of the world) won't get the message.
Which leads to an interesting question : how would Mozilla etc. react to a similar request from one of the 'free world' nations?
They definitely won't get the message, simply because there is no message to be gotten.
It's not like our 'free world' governments don't snoop on their citizens. Everybody knows it, but "what are you gonna do?". There are some annoyed noises, and life goes on.
In this case it was just a small isolated government without any international influence who did it, thus a splendid occasion for everybody and his dog to jump in and signal shining virtue: "We will protect you against all dangers (provided they aren't too scary, powerful or able to retaliate in any way)".
might be a quibble but surely the danger is not that its "Fake". The CA is no doubt set up in the standard manner by an ostensibly legitimate organisation and is not pretending to be anything else. The danger is not its "authenticity" but straightforward abuse of what is designed to be a trust anchor, by a corrupt authoritarian regime.