Barry Margolin <barmar@alum.mit.edu> writes:
> Maybe. But that's true of traditional phishing sites, it's nothing new
> in this case. The MitM attack simply adds the ability of the site to
> display things on the page that supposedly only the real site can
> display (such as your last ATM transaction).

or supposedly the latest online banking countermeasures for fraudulent
website (phishing) imposters ... recent discussion in another n.g.
http://www.garlic.com/~lynn/2007b.html#53 Forbidding Special characters in passwords
http://www.garlic.com/~lynn/2007b.html#54 Forbidding Special characters in passwords
http://www.garlic.com/~lynn/2007b.html#60 Securing financial transactions a high priority for 2007