As of today, there’s a new chrome extension called Password Alert that will warn you if a website that you type your sign-in information into isn’t a legitimate Google sign-in page.
Once installed, the Chrome extension saves a “scrambled” version of your account password, Google says. This scrambled version is stored to verify your identity and isn’t shared with anyone else.
If you do then unwittingly type your password into a phishing site, you’re met with a pop-up, like the one above, telling you to go and change your password.
It’s pretty simple, but there are some pretty cleverly crafted phishing pages out there, so better to get a heads-up about potential trouble ahead of time, rather than when it’s too late.