Sounds a lot like dream dancing and hoping for the best going through darker corners of a town. Could work... 

Yes, companies and banks get hacked even when they devote money, training and ethical hackers to harden their security. But those entities have (sometimes a lot of) people involved, sometimes working under pressure, who are not 100% loyal and/or vigilant, who don't care, make mistakes and get tricked into clicking on links they better shouldn't have, ignoring cybersecurity best practices.

You don't need to know all details of threats so much so that you could replicate them. You should know at least the basic picture of threats because that helps you to spot and avoid the pitfalls.

Keep your mnemonic recovery words of your wallets offline and safe, keep safe redundant copies to avoid possible loss at one single place. Don't use stupidly easy passwords that are already on every hacker's password dictionary.

Know for a fact that software wallets can't protect your assets on potentially compromised devices. And it's usually not easy to judge if a digital online device is compromised or isn't yet. Don't do your crypto coin stuff on digital devices which you use for all your daily online shit.