From gbhackers.com
A new form of a sophisticated phishing attack on Android Chrome let hackers hide the original address bar’ screen space by displaying its own fake URL bar when the user scrolls down the web page.
Security researcher James fisher demonstrated this phishing attack by hosting his own domain (jameshfisher.com), and he exploits the flaw in chrome browser for mobile.
The fake address bar that associated with the phishing web page posed with legitimate site URL by intercept the original chrome bar.
Normally, when we scroll down the web page, browser hides the URL bar and the webpage will overlap on it because the page accessed via “trustworthy browser UI”.