I agree with him
Users are often called the weakest link in computer security. They can’t select secure passwords, and they write down passwords and give them out to strangers in exchange for treats. They use old or outdated security software, can’t spell the word “phishing,” and click on all links that arrive in e-mail or instant messages, and all that appear on the Web.
That’s the reality, Stefan Gorling, a doctoral student at the Royal Institute of Technology in Stockholm, Sweden, said in a talk…
When things go wrong, users call help desks, either at their company or at a technology supplier, such as a PC maker, software maker, or an Internet access provider, which can cost a fortune. The solution, many technologists say, is to educate the user about online threats. But that doesn’t work and is the wrong approach, Gorling said.