272
Phishing campaigns are using Google AMP URLs to avoid detection
(www.malwarebytes.com)
This is a most excellent place for technology news and articles.
PWM saves the URL with the password record. It doesn't auto-fill username/password on a website that the user hasn't already approved, so it provides some phishing-resistance when the URL is unknown, or is just similar to the originally saved URL.