Whose bug is it anyway? – Terence Eden’s Blog

Google Ads are a separate and equally frustrating issue (which Google have had lots of opportunity to fix).

That’s why we use links rather than asking people to search for things.

The problem is that these links are easily maliciously disguised as something else (eg. using different but similar looking unicode characters in a URL). Authorised Push Payment and impersonation fraud in this country rose around 50% from last year (Source: UK Finance). A fair amount of that is through "smishing" (SMS phishing). We need to do better at not training users to click on things we know can be easily manipulated.