Interesting subject, I wrote an article lest week about developers and lack of security education leading to security flaws in web applications: http://www.thatcoderguy.co.uk/2014/05/06/the-hacking-will-continue-until-web-developer-education-improves/