Google released the Password Alert extension that was designed to warn users when they are submitting their Google credentials to fraudulent websites. A few hours after the presentation of the extension a researcher already have developed two methods to bypass it. British expert Paul Moore developed a first method for bypassing the Google extension that relies on Javascript that look on the phishing page for the warning message that Password Alert provides to users and block it. Moore spent more time trying to circumvent the extension, and discovered another method that rely on a race condition in Chrome difficult to fix.”]
Source: https://securityaffairs.co/wordpress/36483/hacking/password-alert-extension-hacked.html