After all the breaches the last 10 years,you would think people with sensitive info would be more vigilant than the guy sitting at home at his desk .........
You would think that every system that didn’t require remote access would be ‘air-gapped’ from the internet.