Change format of URL in location bar for data:text/html URLs? |
|
Issue descriptionThere's apparently a phishing attack going around (see https://www.wordfence.com/blog/2017/01/gmail-phishing-data-uri/ ) relying on making people think that URLs like "data:text/html;https://accounts.google.com/..." are valid account prompts. I could imagine that changing the format with which data: URLs are presented (highlighting the data:text/html, downplaying the rest of the text) might help with this phishing attack. |
|
►
Sign in to add a comment |
|
Comment 1 by pkasting@chromium.org
, Jan 13 2017