Posted by Jeffrey Walton on Jun 02

Another simple one is:

<a href=”http://www.evil.com&quot; target=”_blank” title=”http://good.com&quot;
style=”color: rgb(0, 102, 204);”>Login <strong>HERE</strong></a>

The browsers will hide “evil.com”, and display “good.com” as a tool
tip when you hover the mouse.

The browser makers will tell you the user is not supposed to make
security decisions based on…