[popc0rn]

You could probably run your bank website in incognito mode and avoid extensions. I do this all the time because I don't completely trust any of my installed extensions. Even if I did, they are auto-updated and their code can change at any time without any notice.

[herewulf]

Good idea. You could also access your bank and other sensitive sites with a different profile:

    google-chrome --user-data-dir="/path/to/somewhere/else"

I use this switch and a directory from `mktemp -d` for remote debugging (--remote-debugging-port=1234). The debugging does not disturb my normal browsing and the profile is completely disposable.