Currently there is a manual fix for firefox, and Chrome has released a fix in their latest ‘Canary’ test release which should be released to the general public within the next few days. Until then, if you are unsure if you are on a real site and are about to enter sensitive information, you can copy the URL in the location bar and paste it into Notepad or TextEdit on Mac. It should appear as the https://xn--….. version if it is a fake domain.
For more information on this Tricky Phishing Attack, visit: WordFence blog post: Chrome and Firefox Phishing Attack Uses Domains Identical to Known Safe Sites
WORK WITH SUE