It’s quite rare for the average "someone" to be targeted by a deep, sophisticated cyberattack; without a compelling reason.
Typically, this only happens when a hacker or group expects or knows they can achieve a significant payoff if they were to attack. If they think or know they could "score" something huge through an attack, they will be far more willing to invest their time and resources into that hack, attack, and/or SCAM.
