You'll notice that after you joined any bounties or signature campaign, there are emails which for me is obviously a phising link but they look like legit if you are not going to pay attention. Phising sites are hard to notice in my opinion when you are in rush, for example is when the trading platform sent you an email that you successfully sold your coin, so because you are excited, you didn't notice that you accidentally added a letter to the site where you are going to, that happens to be a phising link, after that, you received an email that you successfully withdraw your funds (the hackers did).

Scammers have different new ideas just to earn money even in the dirtiest way, they have the courage because of the anonymity we have in the internet especially when we are using cryptocurrency. It could happen in just a blink of an eye, you'll know you've been scammed or hack when it is already too late.