Schneier on Security: Impressive Phishing Attack
Wow phishers with genuine SSL certs, issued by Certificate authoritys that are installed, by default, in every browser on the planet...
Just goes to show, when there's money involved the criminals will evolve and get real smart real quick...
As to the SSL cert providers assertions that they rigourously check SSL cert applications... well yeah.