let's hear it for open redirects on google

Google has an open redirect on their server that phishers are now exploiting to misdirect users to their sites where they steal your information. How does the phisher do it?

Using a url formed like this:

http://www.google.com/url?sa=X&oi=dict&q=http://www.somebadwebsite.com

Open redirects were made popular in this practice even more so quite recently when it was discovered they were doing this on via the IRS site. Pretty lame if you ask me...but it's hilarious that it happened to google who no doubt will fix this as quickly as they did with the 302 redirects that harvested and stole content from other sites...