Its a double edged sword...
Sure, I agree that recent developments have shown us that user security can be quite lacking within some companies. I'm sure we all remember the classic stories about those companies who stored their user credentials in plain text, which included passwords. Way to go!
But on the other hand I also think it's fair to say that in some cases users also allow themselves to get compromised. The classic "I use the same passwords everywhere, even when I'm trying to download this game hack from that website which has a reputation of hacking". Some users will easily do that without thinking, only to end up seeing their beloved game accounts getting compromised (or worse).
Security isn't a one way street where we can simply shove all the responsibility into the lap of the "big bad companies". Sure, users should be protected, but users should also stop every once in a while and think about what valuable information they're about to give away.
Biting the hand that feeds IT
