Someone close to me recently experienced this attack! Be careful out there. Tough spot for vulnerable folks looking for change and new positions. If you're being rushed through the process, check twice when downloading anything! Even spoiled dependencies in a cloned repo are at risk potentially (scary). Check out OfficerCIA's guide to revamp your setup: https://github.com/OffcierCia/Crypto-OpSec-SelfGuard-RoadMap
Agreed! I‘ve fallen prey to this too. A scammer sent me an email about a payment not processing due to an outdated credit card. The scammer happened to know which domain name service I use. In the metro on my work, I saw the email and I was like „fuck, let‘s just get this over with,“ so I quickly added my credit card details into the website. Jokes on me, a few hours later I found out that the link was fake. I contacted VISA etc. It was such a mess and at the end of the day 2000€ had been withdrawn.