I continuously experience a #cybersecurity conundrum.
A manufacturer/developer isn't investing in security because the customers don't demand security. And even less are running to pay a premium for security.
With the end users there still seems to be an "I have nothing to hide" attitude.
So I'm looking for ideas, suggestions and experiences on how to increase and generate security awareness both on the management side as well as on the end user side.
Regarding end users there is the additional challenge of another layer of indirection.
I need to enable the "sellers" to create the security awareness, as they talk to the end users.
I'm NOT looking for advice like "just tell them what can go wrong" because i don't think it works. Or at least not if it is abstract and isn't personal.
