I agree with this take but... just as a password could be compromised a nsec can as well. Don't get me wrong, Nostr is much better but it doesn't fix this fully. 

nostr:note10ff5kurf3a2h5d8umneuq5dcgznlhcfreyvk34c946z25mlzk38qxccydr