Explore the psychology behind why people click on potentially dangerous links in this 43-minute Black Hat conference talk. Delve into the results of two user studies involving over 1600 university students, examining click rates for suspicious emails and Facebook messages. Discover how factors like curiosity, context, and personalization influence clicking behavior, despite users' awareness of potential security risks. Analyze the implications for organizational cybersecurity strategies, including the pros and cons of employee security awareness training. Consider the challenges of relying on user decision-making for protection against phishing attacks and discuss potential alternatives for more effective cybersecurity measures.