On the heels of the phishing attacks on Twitter and Digg, where all that immediately seemed to be at risk were logon credentials to the social sites, comes a potentially much more insidious problem.Security vendor Trusteer has found a JavaScript bug in all major browsers makes it easier for crooks to steal your login information while you’re doing your online banking. It’s called “in-session phishing,” and what makes it more difficult to detect is that it happens when you’re already logged into your banking