OP, isn't it the punycode attack where they try to impersonate URLs and send Unicode to the address bar and make people believe that it's the original URL when most guys don't even bother to check where they are visiting?
I'm quoting a post from a different thread where crairezx20 has explained already about this case and shared a thread that shows everything about how to keep yourself safe from such attacks in Firefox through a detailed guide.
Why the Punycode attack is not listed or mention above?
This is one of the Electrum attacks before even you see the legit URL which is electrum.org we cant see if the site is fake or not but if you copy and paste the URL to notepad it will show the true URL.
I know you can disable Punycode in firefox but I don't know how for chrome.
For safety better use firefox instead and disable punnycode get more info from this post here
https://bitcointalk.org/index.php?topic=5178198.0