I've been expecting this for years. The question is; how will the community respond as the frequency of attacks increases?

Security, both server side and client side should be a major concern of anyone who writes commercial code.

So, where do we look for current information and advice on securing our clients systems?

That article is nothing more than click-bait.
"Thre-quarters"? Pure bovine scatalis. Security teams auditing code and finding holes doesn't mean that such holes are being used. On the contrary, most are patched as quickly as they are discovered, before the hackers have a chance to exploit them. The PRIMARY security hole in Linux, unlike Windows, is the password, and no software patch can fix that hole. Android has a Linux kernel, but it is layered with Google's Java apps and device controls, making it particularly vulnerable, but NOT indicative of any overall Linux distro vulnerability.

Linux IS increasing in popularity, especially after VISTA, Win8 and now Win10, which many describe as pure spyware, and so one can expect attacks on the Linux kernel, utilities and apps to increase, but the hackers are facing the same formidable difficulties as before. A big problem are new Linux users coming to Linux from Windows but still thinking and behaving like careless Windows users. They will fall prey to phishing attacks as easily as before.

I agree, the biggest security risk is the end user... Fixing that is probably a lost cause and we who (humbly) try to behave like we know what we are doing, are stuck with increasingly complex needs to firewall our systems.

I much appreciate this forum for the kind of talent that responds to our questions. I never saw that when I worked in the Windows® world.