Cases like that happen again and again and again... We really need to educate user about security: http://www.dailytech.com/article.aspx?newsid=2914