I do, I use a password manager for everything that I keep on an encrypted USB stick, and treat security questions as passwords. But that doesn't mean that the majority of their customers will.

Oh, security and design of online banking systems is horrible. Mine uses what has to be the worlds easiest captchas for bot prevention, and, before entering PW, makes you answer one of your security questions.... which are then used for PW reset. And of course its the same useless security questions you see everywhere (though they have the option to add your own, thankfully). The one good thing is that I can configure it so that I get an email every time someone logs into the online portal.