Most are aware of phishing and while virtually all will at sometime or another open a phish even if unintentionally I think this "study" is basically garbage. There are few simple rules to go by: if the email context makes no sense; trash it immediately, if the context makes some sense (an email from Amazon e.g.) but it is unexpected; open the website from your browser to verify the information not the link; if you have been to the country (I get a bunch from India); immediately trash.
Or the summary rule, if the email context is at all dubious it is guaranteed to be illegitimate. That is a simple rule that even the most technically dense but otherwise intelligent can live with.