> There have been literally thousands of documented incidents of this.

Of making people export all their credentials from a password manager and send them to a scammer?