McAfee has a phishing “aptitude test” that’s floating around the Internet right now, where users are asked to pick the genuine site from a pair, one of which is an actual phishing site. The truly scary thing is that I only really had grammar bugs to go on for many of the sites. If the phishers ever learn English, we’re in trouble.

Of course, for non-native speakers of English, the problem is already here, unless they’re amazingly good non-native speakers.

Related: my company just released a new two-factor authentication system using automated phone calls: http://phonefactor.net.