Social engineering meets behavioral economics

A recent paper on paying experimental subjects to run potential malware is here [pdf]. Hat tip Bruce Schneier. Money quote (and I mean money):

We show that as the price increased, more and more users who understood the risks ultimately ran the code. We conclude that users are generally unopposed to running programs of unknown provenance, so long as their incentives exceed their inconvenience.