I'm sorry, what basis do you have for saying 'your browser has been owned,' as if it were inevitable and I were merely unaware of it? Just because I have JS enabled does not mean I'm indifferent to security. Besides my OS, I also monitor traffic through my router and modem.
Please don't assume that your abundance of caution entitles you to dismiss others as ignorant or indifferent to security matters.
All I'm saying is that absence of evidence is not evidence of absence.
It's possible that your security has been compromised and you are simply unaware of it. It's great that you monitor your network and take other security precautions. It would probably be even better if you also avoided running Javascript apps written by people you don't trust. Wouldn't you agree?
Please don't assume that your abundance of caution entitles you to dismiss others as ignorant or indifferent to security matters.