Sort of an offshoot of a heated thread from a little while back. This article gets to the heart of the matter by asking if the victim of a hack, (however loosely defined) had it coming...

Is suggesting improved security the same as blaming the victim? - TechRepublic

...Any suggestion that one should protect oneself, that developers should take responsibility for the secure design of their software, and that taking a position of willful ignorance on matters of security only enables security crackers, may encounter accusations of blaming the victim dismayingly often. The most common case, in my experience, is someone reacting to the suggestion that Microsoft is too lax in its vulnerability handling policies by demanding that everyone stop “blaming” Microsoft for the behavior of malicious security crackers.
Discuss!