CSRF/Phishing attack

There is currently a CSRF designed to mislead you into believing LiveJournal is requesting your username and password, when the data is actually being requested by a third party who is trying to gain access to your account.

See http://lj-support.livejournal.com/840844.html for details; if you've entered your LJ login credentials in a pop-up that looks like the one below, 1) you ought to get a smack upside your head, and 2) you're gonna want to go change your password right about now.