Offcourse users ignore security-advice. What is the alternative ? Follow it ? Don't be ridicolous !
* Check every program installed on your windows-computer for updates regularily, for example weekly. This is a many-hour job if you're an average user with ~50 programs installed, 40 of which don't automatically tell you about updates.
* Pick 8+ character semi-random UNRELATED passwords for each of the 173 websites you're registered on, DONT write them down, CHANGE them regularily. Come on, that advice basically boils down to: "don't be human"
A security-policy that depends on humans not being human, is broken. And it's unreasonable to blame the users for the policy being broken
Ignoring security-advice
* Check every program installed on your windows-computer for updates regularily, for example weekly. This is a many-hour job if you're an average user with ~50 programs installed, 40 of which don't automatically tell you about updates.
* Pick 8+ character semi-random UNRELATED passwords for each of the 173 websites you're registered on, DONT write them down, CHANGE them regularily. Come on, that advice basically boils down to: "don't be human"
A security-policy that depends on humans not being human, is broken. And it's unreasonable to blame the users for the policy being broken