nostr:npub1j0fhny2ay990zr37q4lex9z506jc0hpg8ja4lqpsvqjt6y9j72pspkwj55 I guess I've seen on the bank website statements like "Beware of scams!".

But I'm thinking we do have the technology to verify that a message has come from an authentic source. Why should the end user bare the load of having to decipher whether the message is legitimate or not.

At this point, I probably receive more phone calls from people trying to fake an identity, than legitimate callers.

(I spent a bunch of time encrypting XML messages, then later dealing with verifying digital passports. But that was also about 10 years ago for me too)