For many years, I was a fan of using target="_blank" inside any anchor tags on my website that linked to external sites so it would keep the viewer still on my site in the background so they can easily come back to it later on. However, Ben Halpern describes the problem (with examples) of how it is an issue on this page and how the window/tab containing the origin website (i.e. the one with the target anchor tag) could be manipulated to trick the user into providing details to a fake equivalent site.

But to explain how to get around the vulnerability, you should add the following to any anchor tag element which targets a new window/tab:

rel="noopener noreferrer"

Stay safe out there!