I would say the bigger problem right now is that people don't care enough, period. Your average person is going to want to use whatever is cheaper, or whatever they have now, and isn't aware enough to demand something better and isn't going to want to pay for it. Existing products and services don't have a lot of incentive to improve because the customers don't care enough. As long as competition keeps the playing field level, as long as noone tightens up their security, nobody has to spend money on something that doesn't directly generate revenue.
Consumers aren't going to drive companies to improve. It's going to take competitors trying to one up each other, to offer better service at the same price, to make people want to use their product. Until then, it doesn't matter that the consumers are infecting their computers and giving scammers their login information; the NSA is just going to be using their dirty backdoor tricks to get what they want (plus whatever exploits they copy from the scammers).
Once you have the scammers and the NSA back on a level playing field, then you can get back to status quo where the user is the biggest unseen threat.