I get that this attack vector as described is mitigated by reviewing the entire address but most of us don’t do that most of the time. Just trying to see if this is worth worrying about or if it’s old news.

The title of the article is pure fud, and I think the article doesn’t describe the issue very well, but it looks like the issue itself is real.

The original report describes the issue much better, and without fud: https://drops.scamsniffer.io/post/wallet-drainers-starts-using-create2-bypass-wallet-security-alert/

So it looks like scammers found a way to circumvent wallet warnings (like Rabby has for example) for known scam addresses. I don’t understand how users are lured into using the contracts that sends their funds to these addresses though?