[mattchue]

Doesn't this make it incredibly easy for phishing websites to be created? I suppose such websites would exist anyway, but this would certainly diminish a user's ability to differentiate between a legitimate .gov or another page with malicious intent at a glance.

[chuckgreenman]

That was my thought at first glance too, however it is already really easy to just download a sites assets and make a mock up.

Sometimes you just have to trust that people are going to pay attention before submitting sensitive information on the net.

[lockes5hadow]

Not any easier than it already is. There are tools like Social-Engineer Toolkit (SET) that make it dead simple to launch all sorts of phishing attacks.