> The unusual aspect of the campaign is that it identifies mobile devices; once detected, it then logs keystrokes in real-time as the user enters them into the phishing page.
You don't even have to hit submit, hopefully not autofilled.
Auto password fillers don't fill on the wrong site; they are actually a great defense against this kind of thing if you get it right the first time and then are very suspicious if it ever doesn't auto fill.
IMO, browsers should have site bookmarks to replace EV certificates, where you can bookmark a site and give it a name and the name appears where the EV company name used to.
I think most of the good password fillers will check the full domain, so they would not fill any password in for these sites. That's also a good indication that your not on the expected site.
You don't even have to hit submit, hopefully not autofilled.