ilyess, 
I was shocked witnessing someone logging into their bank on the phone in public recently:
- Their phone’s big display was at full brightness so everyone around could see what they were doing.
- They typed their password in, so no password manager. Unsurprisingly the password was weak: 5 lowercase letters and 1 numeric character.
- They didn’t have any kind of 2FA set up!
How on earth is this still happening?! 🤦