Today I noticed this video: "Clickjacking".
I have no idea how it is done but it shows one more time that web applications are not the overall optimum solution for every development.
If such things are possible, then there are serious risks in using web applications for accessing critical,confidential data!
Is it so much more difficult to download and launch a jar file by double click? Deployment is not necessarily complicated as not every application needs a complex and high sophisticated setup process. ;-)
Related posts: Web vs thick client, Your holy machine.