I can't argue we need better security, but I will argue we (as an industry, and even we as humans) do not understand the security domain--period. Thus we can't secure what we have.
In my opinion complexity is the bugbear that prevents us from doing so. Complex buggy tech layered a dozen layers deep is frankly unsecurable.
Should there be some warning systems that tell you you're doing something boneheaded? Probably. But the real trouble is what's boneheaded one place is perfectly reasonable in another.
We're trying to use a fishnet as a pressure hull. The whole paradigm is wrong.