Pretty much what Learn Bitcoin said. The problem isn't the phishing attack per se; I mean, it really sucks if someone fell for that, but they can't have missed the many warnings. (If I recall correctly, once the seed is generated, it displays a "Never share it with anyone" message)
Unfortunately, only a few percentage of these users are on the crypto forum or follow the blog websites. Most people come online just to heck their social media. No matter how many times we write these warnings, still there will be users who haven't seen our discussion and the warnings posted on the internet. You and I know what we should avoid, but we cannot expect everyone to be veteran crypto users. A lof us still get confused when we receive phishing emails.
The problem is, for once more, the data the hacker possesses right now. That email and name list will sooner or later be sold at Breached or some other corner of the darknet, and there will be victims.
This is unfortunate. But, once a thing is compromised, we can't do anything except what we doing now. Spread the news as much as possible and share it with the hardware wallet users.
The hacker doesn't necessarily have the information of 66,000 Trezor users. They have information on (according to reports) a maximum of 66.000 users that contacted Trezor support from December 2021. Many of them are surely owners of their hardware wallets, other's could be interested parties, like you and me, who sent an email and asked for information or clarification on some points.
I understand that. Maybe the hacker didn't backup the list of users and emails. Or maybe he wasn't able to collect all the information. Or maybe he has 50K emails and usernames. We never know, right? So, let's assume all the data available on their support center was leaked.