Security is difficult and expensive. Even global players like Mozilla can't handle it without some occasional issues.
Now think about ordinary user in random country. How can we make it easier for them?
I wonder if there is some resource, describing all the previous sec. issues, which can be used for learning and proactively improving ecosystem the similar way it works with airline industry.