This is all about low hanging fruit. Poorly configured security, lazy or uniformed users and easy hacks.
If you’re a corporate heavyweight or just using work gear and for work purposes I hope to god your security team make sure you’re aware of the risks and have controls to prevent mistakes.
If you have things to hide then you’d better be well versed in security practices.
If you’re neither then it’s basic education, consumer products and common sense. Not SSH tunnels to home routers. Ask yourself whether your mum could manage it. Mines just learnt not to click on links in emails that don’t (including when the mouse is hovered over) look 100% legit.