With the high profile social engineering hack of Twitter, it's a good time to review why employees are so vulnerable, and what can be done about it.