A forum I'm on called rllmukforum (http://rllmukforum.com) that got attacked this weekend by someone who phished the admin password via PM by using a link to the similar-looking http://rllnukforum.com (http://rllnukforum.com) domain - they then used the admin control panel to add a script that redirected to their site to steal other people's passwords and later used JavaScript to grab passwords from the on-site login box. From that point they started crapflooding the site with embedded shock images and, once image embedding was disabled, created lots of inflammatory threads using other people's accounts.
In case your wondering what this has to do with Hydrogenaudio: one of the domains they used in the attack was http://hydragenaudio.org (http://hydragenaudio.org) (note the "a") - so consider this a heads up that they may try and do the same thing here in the future if they haven't already.
Edit: Just noticed there's a fake login page at http://hydragen (http://hydragen) audio.org/forums/ (remove the space to view, BUT DON'T LOG IN - it's a phishing site)
thanks for that, that hydragen audio site is convincing, its even using java scripts from the real hydrogenaudio site, plus its own scripts
Nasty! I sure am glad that I only use Opera Wand to login to sites. AFAIK there's no possibilities to fool that... right? (wrong website url)
If you are using Firefox, I would recommend the PasswordMaker plugin. It is also based on the site URL.
i actually use the "remember me" stuff on here (should probably get something better), but it obviously didn't manage to read it