Problem......
For ages users have been able to view the security information on a site, eg my bank has the padlock plus an extended block of text that identifies them. Now if that is removed, phishing becomes trivially easy again. I just need https;/fakebank.com. Must be safe coz it's https, right?
I can also think of ways to mitm https sites that'll be made easier by this.
Hurry up and die google!
Biting the hand that feeds IT
