I believe the problem is that they are so big that it's hard to run their 'promotional' stuff themselves (newsletters, support system, E-Mail ...). It's easier to use 'something as a service' than to host and maintain all the infrastructure yourself. That's why it's possible to both make a secure product, and simultaneously have insecurities in your customer data handling (which is terrible for privacy!).
Yeah, but now it's much harder to apologize to everyone because of silly mistake like this.
This was always the weak link for ordering anything from internet, support, shipping, handling personal data, etc. and that is why I always recommend purchasing locally with cash whenever possible.
If something is not available in your country or city, I would take some cheap flight and go in country where I can purchase that item personally.
And very simple solutions for most email phishing attacks is using email aliases and temp emails, it's a life changer.
I think it's finally time for Trezor to seriously change some things and stop doing the same mistakes like ledger did.
So, to this extend, I think trezor may be a "better" target for scamming.
Good point, but Trezor also has bitcoin only firmware and they released bitcoin only devices before.
Maybe that is why ledger was most targeted of all hardware wallets.