Source: http://www.theregister.com/2007/01/12/phishing_kit/A new kit for sale in the digital underground makes it easier for fraudsters to run more sophisticated phishing fraud attacks.
The Universal Man-in-the-Middle Phishing Kit enables fraudsters to sit between prospective marks and legitimate businesses. Rather just setting up a bogus website that's promoted through spam email, crooks set up a fraudulent website as a conduit through a legitimate website to communicate with their victims. The technology allows con men to automatically capture victims' personal information in real-time.
Such attacks have been seen before, but until now were restricted to the realm of skilled hackers. Man-in-the-Middle puts the approach in reach of s'kiddies.
Interesting times we live in.