Posted: Apr 18, 2017 3:29 pm
by NineBerry
A general rule to follow to prevent this kind of attack: Never enter credentials on a website unless you entered the web address manually or navigated there from your own bookmark. Best to never enter credentials manually. Have your browser store the credentials and auto-fill the login fields. The browser stores the password only for a certain domain, so it will never automatically fill the credentials for a wrong website.