That is the root of all evil if you ask me. Anything behind a shortened URI cannot be trusted. These types of services are on their way out.
What a mess! I've been urging others to also not follow shortened URIs if they are not absolutely sure of its creator. And even then, that third party middle man makes the hair on me neck stand up.
I think this can be seen as killing two birds with one stone. First the Google phish and then the reputation/trust hit on TinyURL. Which was the prime target? Google? Or TinyURL? ;)