I don't think lack of willing to learn is language related either, I think it's maybe because people who aren't into security just aren't into security. Some people strive to work in a hospital, some people strive to work as a mechanic, some people strive to work in game development, some people strive to work in designing, some people strive to work as a farmer... others strive to learn in cyber-security, others don't. It's a bit like wondering why someone isn't knowledgeable about cooking lasagne, of course if they do not like the food, they likely aren't going to be great at cooking it (or have much experience at it at-least).
In fact, I don't see what your native language has anything to do with this. There's content in English, French, German, Italian, Chinese, Japanese, Dutch, Spanish, Polish, and also from my own native lang... Portuguese. Regardless of where you are from, there is usually content to learn from. And even if there is not, at-least they taught English from a young age here and it was pretty much wanted of you to keep doing it during schools.
Many people have responsibilities like holding down their main career, looking after their children, keeping their house clean among many other chores which are required on a daily basis, shopping for food, doing things to relax like watching some TV or going out on days off from work, family events, etc. No offence to anyone who disagree's with me but honestly I don't think it is fair to blame people, because not everyone really has time to study cyber-security even if they wanted to given the amount of tasks they may already have on their every-day to-do list.
Awareness can be increased, businesses can start ensuring that employees are properly trained in cyber-security for the sake of the protection throughout the enterprise infrastructure, but at the end of the day... There will always be weak-links in terms of cyber-security. Some people take martial arts for self-defence and thus they can better protect themselves but not everyone does potentially due to time, interest, and other factors I cannot think of right now - it's the same logic.
The security industry is never going to die, it's been more than 18 years and Anti-Virus is still in business. The popular vendors make bank from their Home end-user consumer versions of their product and they make 5x bank from their endpoint services, bear in mind I'm referring to "popular" in the real-world, vendors like Avast, Norton, and maybe not anymore but in the past, AVG and McAfee. Why? Because people grow up to using such vendors services, probably believing that it's mandatory to purchase and use them to truly be safe, and that premium will always be better than free. More often than not, they may even believe that an infection means the product doesn't work because it should have made them invincible, and this is natural expectations from them because they aren't educated.
At the same time, the malware industry is never going to die. It was huge when it was just about destruction, and then ransomware came along and helped push it into being all about generation of income via exploiting weaknesses in people (e.g. pressuring them via ransom demands to get back critical documents or prevent the leak of stolen documents). Now in the wild we have threats ranging from ransomware, banking malware, crypto-currency miners, we used to have a lot of rootkits and Win32-based "phishing" utilities if we back-step 4-6 years, among your average other malware variants.
Things aren't going to change in terms of uneducated people when it comes down to the attacks out there and general cyber-security. People will learn more often yes, but the whole world isn't going to become educated overnight. Maybe things will be better in 10 years time from now. Then again, we said this 10 years ago and look where we are now.
When I was a young teenager I said to myself, "Okay I want to be a gardener". So you know what? I became a damn good gardener. But at the same time I always had an interest in cyber-security, so I took on that interest as well. I also had a phase of wanting to be a mechanic, so I studied that for 3 years. And I also managed to gain experience in plumbing. Oh, I was also a prince and had my own real-life fire-breathing dragon and lived in a castle for 300 years. Did I tell you about the time I transformed into an alien and flew to the moon and back? But at the end of the day, I was interested in cyber-security... So it was natural of me to want to find time to study it, when I had the time I did that.
People will study what they are interested in. If it leads them down a path of becoming infected and losing money to attacker's or being damaged in any shape or form due to an attack, it's on them for not becoming educated, especially if people had tried to make them aware and they refused//simply didn't care. People learn from their mistakes, and if they don't, well... Ever heard the saying, "You cannot help someone who does not want to be helped"?
Threats in the wild will evolve, security software will evolve, we just have to deal with it.
