I mistyped my PIN (yes PIN, you can have only a 4 or 6 digit number, not a real password) into my bank app too many times and had to reset it. I was prompted the secret question "what is the name of your childhood best friend?" This alone would have given me (or anyone) access to my bank account. I forgot what the answer was and had my account locked after a few attempts.
How was I to prove my identity? Call the 1-800 number and the automated system asked for my account number or any credit/debit card number, the numbers in my postal code, my phone number, and my birthday. THAT'S IT. Account unlocked and was able to set a new ~~password~~ PIN. So many people know or can easily find out this information.
I use very strong digital security everywhere that allows it, but of the hundreds of accounts I have, my bank is the least secure and does not allow any stronger security even if you want it!