/No-Opener-No-Phishers-No-JQuery

Chrome extension to stop yourself from falling victim to phishing attacks, remixed with no JQuery

Primary LanguageJavaScriptBSD 2-Clause "Simplified" LicenseBSD-2-Clause

No Opener, No Phishers, No JQuery

Chrome extension to reduce the risk of falling victim to phishing attacks, remixed with no JQuery. Read Jamie's post about this for more info: Browsers are broken, but nobody cares. All it took was 1 line of code to fix it..

Overview

Any website that uses target="_blank" on their links, allows user generated content and doesn't use the rel="noopener" attribute on their links (I'm looking at you Facebook, Twitter etc.) is vulnerable to a scarily simple phishing attack.

I've made an example of how this type of phising attack could take place so people can realise how dangerous it can be, which is also on Github.

This Chrome extension is as simple as it gets, all it does is add "noopener noreferrer" to the rel attribute on all links on the pages that you're visiting. It's literally one line of code.

Installation

Not in Chrome store yet :/