Never ssl is a surefire way for safety. Im answering ops question about why google has removed the green lock and googles resons behind it.
What you say is true, although in genral majority sites are not doing this. So its still a overall safer web google is aiming for.
Users are not as easily fooled Ssl is only a small part of what they look at for legitimacy. Other things may include reviews from real people , online reputation across other channels. ( which yes can aslo be faked ).. Its the web there will always be that element no matter how you look at it.