One of my favorite things to do when I get scam emails and phone calls is to practice osint and threat/risk analysis just to see what shows up.
Interestingly, it looks like in the bulk of large scale phishing emails, there's really only a handful of frameworks being used and not much due diligence is being done on the part of the attackers to disguise it.
I was thinking today about how it reminds me about the mid-era mobile game industry and all the shovelware with the same toxic monetization strategies.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!