Unfortunately, I think a ton of people today still would not know the difference between a "green URL" and an unencrypted URL, or the fact that "find-iphone-location.com" is phishy.<p>I used to work at a large, competent tech company whose 401k plan was managed on a URL similar to "accessmy401k.com" -- it seemed similarly phishy to me but apparently enough people thought it was a good idea that this financial institution decided to make it their online portal to actual 401ks. I often see my less savvy friends going to places like "cheap-christmas-lights.net" when they want cheap Christmas lights.<p>I appreciate what the big browsers do when it comes to showing secure connections and highlighting the domain in certain cases, which is pretty much as far as we allow them to go in order to stay in control of our own browsing experiences, but part of me wishes it were a little bit more explicit. There are for sure potential drawbacks... when my Mom said she was booking tickets on "CheapOAir.com" I immediately thought it was a scammy site, but it's actually legit. But a browser (especially a browser on an iPhone?) should be able to see you're at "find-iphone-location.com" and maybe just assist the user a little bit by saying "Hey, just so you know, this is not a legitimate Apple/iPhone service" automatically.