I mean if you have an account in LA token, and you use that email, there's no way the scammers would know that unless the exchange itself are leaking that information to them, or their site was compromise by the hackers.
I do not believe that, who are Latoken customer care? Humans or robots? Humans. Are the kyc on exchanges encrypted? I do not think so. If governments want the personal details of a user that is suspected, exchanges can give them the personal information needed.
Why are you talking about government? I know they can provide an information to the government if they are regulated but we are talking about how the scammers were able to obtained the email of the user, and there's no way the exchange will give that to the scammer if they are operating in good faith.
Also on exchanges that require only email, there are possibilities of phishing. Only what can make you safe from email phishing attack, is to not use email or any kyc to setup wallets and exchanges, ones you use even email to setup an account, be it wallet or exchange, there are possibilities of phishing attackes.
It's Phishing is what the scammers are trying to do(stated clearly in the OP), but my question is, how did they get that email address?
People working in kyc required exchnage and wallet companies can leak the data because some people among them will have access to it. Also, there could be possibilities of data beaches. Did you think all data breaches could be known to the public? I do not think so. Most data breaches that are commonly known are ransomware encrypted data breaches.
You are going too far with your explanation my friend.
My questions is ;
??
or their site was compromise by the hackers.
You can just say yes.