I agree with carl0ski. I got infected a few days ago just because I trusted a freelancing company that connects me with clients via their platform. In this case, the attackers used their application, the hacker actually presented himself and talked to me for 20 minutes through a fake profile...