I am in a different frame of mind on this one. The numero uno peeve for me is the under informed attempting to seem wise when talking about Risk.
My absolute favorite is when you get some administrator waving thier hands and saying "Hackers could compromise our..... If we don't do what I say" or the classic "What would happen if this building were hit by a..." (This one is even more classic when you know person uttering such wisdom would be unable to successfully restore information from routine backups...) I find normally they have absolutely no idea of what could happen and how it might be done. They use this kind of talk to muddy the water and slow gum up the works. Most times they are well meaning but completely useless to the task of mitigating organizational risk.
Hearing this you might think I am not concerned about Risk. I assure you I am. I am opposed to clumbsy advocacy. Escpecially from people who are obviously intelligent enough to go figure it out but to lazy to act.