My experience matches jstanley's: with basic ISP filtering and disabling as much filtering as they let me disable my ISP reports blocking 181 messages in the past month mostly via some list (they don't say which one). I see a few spam messages per day and generally get half a dozen or more copies the first time I see a new one, conveniently making them easy to delete (and very few have confusing subjects). I'm fairly sure I see less than half as many as the ISP blocks. This is with an address that has been public for over a decade. It doesn't seem like much of an arms race to me and it is a trivial effort to delete them.

The only things I can think of that I do differently than many people that might make a difference is that I have my mail client set up to not show remote images ever and I never dirctly click any link from email no matter the source. Possibly things might be much worse otherwise, but from my perspective it doesn't seem like spam is a huge issue these days with basic filtering.

You're still benefitting from everybody else's more sophisticated spam filtering. The fact that most users have good filtering means that the cost/benefit ratio of sending spam is much worse than it otherwise would be. This naturally decreases the activity significantly. Saying that you get by with just basic blocking is the e-mail equivalent of saying that you don't need a measles vaccine. It may be true but it doesn't tell us much about what the world would look like without those measures.

Where is the evidence that this is true? It doesn't seem that likely to me that so few people are not using gmail-style spam filtering that spammers couldn't figure out how to target those of us who aren't (the filtering that I could have used but turned off is more random than helpful and I would guess this is the case on many non-Google mail providers). Even with Google running a huge portion of all email there are still a huge number of people with email not provided by Google.

An alternative narrative is that previously email servers were supposed to accept almost anything from everyone and spammers took advantage of this. From this perspective it is the relatively recent requirement of sender verification that made the key difference and allows Spamhaus to work (obviously they need to do something to determine who to block). This perspective seems to match what I am seeing.