Too bad, a simple url inspection could have prevented that incident and it was very obvious a .sc country code domain seems suspicious  or better yet, if they have just bookmarked blockchain.com then they wouldn't fell victim to such fraud.

Yet in the lighter side, I think that crypto related website was somehow fortunate that only less than 1 BTC of their fund were stolen, where I think it coud be worst if that wallet have a huge amount stored in it.