[hombre_fatal]

Dunno, this is also a failure of email client UI which is designed around a naive world with no bad actors just so it looks cute.

The sender email address could be more prominent.

All link URLs could be visible.

Emails from new senders could have some sort of warning/alert. I used to use an email client that let you approve incoming email addresses, and it once saved me from a Coinbase phishing email since it made me double check the sender since it was marked as unapproved.

We can't keep blaming the victim when our own software works in the favor of bad actors. You're going to let your guard down one day.