That makes no sense. Are you getting phished from clicking a link someone you know posted in your internal company Slack? And use a password manager, those make sure the domain is correct.

Every app and their mom uses the webview bullshit - it's not just your work slack.

Now you're logging into the same thing in multiple different places. Obviously, the odds of you getting phished go up significantly.