Wherein a bad guy covers up an iFrame containing a popular account page (Google, Facebook, etc.) with a CSS layer and then hijacks your click on what appears to be a harmless page to get into your account.
Since it's just HTML and CSS, could effect the iPhone: