Evolution of phishing -- embedded forms

Paypal12388

This makes things easier: No phishing site to have to maintain. No browser-based phishing filters to worry about.

This particular one posts to a account hosted in California. (The images are all pulled from PayPal, like this one, always a source of annoyance.)

(Clarification: I'm not saying this hasn't been done before -- it has. But it's not common to see these, and also, what I've seen in the past doesn't neccessarily have the sophistication of this phish.)