pull down to refresh

How best can we secure our keys so that this doesn't happen to noobs who level of security isn't up to a Bitcoin Core developer?
Being a Bitcoin Core developer means nothing. I've seen security researchers fall for basic phishing emails, a Bitcoin Core developer failing at basic opsec is comparable