All it would require is an AMP website that mimics the Google login page. It alr... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		TechBro8615 on May 27, 2020 \| parent \| context \| favorite \| on: Google no longer providing original URL in AMP for... All it would require is an AMP website that mimics the Google login page. It already says "google.com" at the top of the browser, and we've told users to trust that, so...

8ytecoder on May 27, 2020 | [–]

I’m surprised this is not widespread yet. Is there anything in AMP to detect and block phishing attempts?

ValueNull on May 28, 2020 | [–]

The google.com domain would also probably trigger autofill recommendations from some password managers, which would make things even more convincing and seamless.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact