No, honestly, don't trust your friends online. This trick was common with email and now moreso with chat apps - spoofing a friend who sends you a file that you, in your eagerness, open it only to find it was a Pandora's box of vile scripts. Even worse, you may not even notice.
CEO of Binance Warns Users About New Hack Targeting Cryptocurrency Industry
Click-fraud is rampant, so take a few seconds to think before clicking your way to poverty. Is it really likely your friend would send you such a file? Is it in character? Is it just an "online friend", so not really real?
I love this typo: "treat actor" instead of "threat actor". Coz you're the treat!
This is one big reason I don't use a mobile - apps for saps - and even on a browser, I still like NoScript.