are all the rage for log-in.
Just in the last 2 hours, I came across two, that from Anywhere.FM pictured here
Is there irony in the use of a visual paradigm that might actually simplify a phisher's life (by giving them license to both blur the page details that might alert the user and that removes the burden of building fully functional (i.e. clickable) pages for authentication? If I was a phisher, I'd take a screen capture of the real site, add a grayish & partially-transparent layer in Photoshop, and be off to the races.