Originally posted here by Spiritus
I think they're being forced into the assumption that your average user is too dumb to learn how to dodge phishing attacks.

I think the solution is to make people pass a test to be able to use a computer, like a driving test.

That way, we can have a 'computer training school' that teaches people that making viruses and defacing websites are eventually self-destructive, and so on...
That is highly impractical i would say.
Computer has reached third world countries and also rural parts in some of developing and least developing countries.
We shouldn't deprive them of such a wonderful resource in the name of security.
Should we?

Now to the origional problem MsMitten is right this educating the end user is probably the most effective(or the only possible solution).
It is just anather form of social engineering.
I guess the key to this type of security threat is keeping things simple.
When humans become excessively dependent on technology problems arise and solution to those problems is educating the end users. :P