Given how obvious the vector is for targeting after its so widespread, stands reason to believe the same state actors would push phishing schemes and other such efforts in order to justify having a tool like crowdsrike used everywhere. We are focusing on the bear trap snapping shut here, but someone took the time to set up that trap right where we'd be stepping in the first place.