Google launched Password Alert Chrome extension to alert users whenever they accidentally enter their Google password on a carefully crafted phishing website that aimed at hijacking users’ account. Security expert Paul Moore easily circumvented the technology using just seven lines of simple JavaScript code that kills phishing alerts as soon as they started to appear, defeating Google’s new Password Alert extension. Google shortly fixed the issue and released a new update to Password Alert that blocked the exploit. However, Moore discovered another way to block the new version of Password Alert, as well.
Source: https://thehackernews.com/2015/05/hack-google-password.html