The previous post has some details https://news.ycombinator.com/item?id=42773667 I'm not sure they grasps all the existing browser and DNS security models, but it seems to be about phishing.
So it's a man in the middle proxy situation? The problem is proxies could do this all along and many corporate proxies do this all the time but they also keep the URL the same and you just don't know it because it's transparently happening on the network.
Is this any worse than any other phishing attack? Not the way I look at it and it doesn't appear particularly novel either.
Is this any worse than any other phishing attack? Not the way I look at it and it doesn't appear particularly novel either.