Just two to three days ago, I received an email from Gab...regarding the same happening on their platform - even though there is no money involved, the phishing is to get the real-world details of the posters, while also posting aggressive and offensive messages.

Over here, I doubt many will give the Owners code, but Active code is requested for all kinds of actions which should not need anything more than the post password. Perhaps those can be ecouraged/requested to change their password requirements, so that if we are not transferring funds, for any other kind of transaction, a request for Active Password would be a red flag, warning us of danger?