Just dealt with a user who facilitated remote access to their work asset by clicking a link in their personal email. The threat actor remoted in, and immediately tried logging into the user's bank account website before I was able to sever access. Having a training that addresses the dangers of accessing non-protected platforms like personal email or social media on work devices would be awesome.