It's better than someone spoofing sites and stealing privilaged information by people who are not security smart enough to make sure. These people already comprimise themselves via email, why make it easier for them to do it other places. In the end some idiot may end up suing the company because the site was spelled incorrectly and they[the idiot] ended up giving away their credit card number, etc.