I remember that being the norm as early as about 15 years ago.
Thus the reason behind the security mantra, "If it's not secure by default, then it's not secure".
Because normies know very little, if anything, about IT security. And to be fair, they shouldn't have to. When you buy a house or a car, how often do you take time to examine the mechanism in the door locks, and check to see how easy it is to pick them? Or do you rely on the locks generally being secure, albiet far from Fort Knox-grade.
That is true, BUT people are willing to learn about securing their cars and houses. They will take precautions. People do change their locks, buy security systems for their cars take care that they do not leave keys lying around. They are willing to make an effort to lock their doors, keep and eye on things. They will avoid buying things with weak security.
When it comes to IT they expect someone else to do it. The problem is no one else cares about your security as much as you do.
No, I started last year, by myself, didn't actually know this organisation, I just get training locks on shops and unlock them, I also see that they are specifically in US, I am from Italy, so there is no one of them around me :(.
Thus the reason behind the security mantra, "If it's not secure by default, then it's not secure".
Because normies know very little, if anything, about IT security. And to be fair, they shouldn't have to. When you buy a house or a car, how often do you take time to examine the mechanism in the door locks, and check to see how easy it is to pick them? Or do you rely on the locks generally being secure, albiet far from Fort Knox-grade.