Given what Joshua said I concede you guys who were worried were right and I was wrong. In fact, I believe Joshua missed one possibility: The person owning the site could, even if it was directly pointed at the real FT, have a keylogger or equivalent running -- and thus be able to steal passwords after all.

Sounds like the probability of that in this particular case was small but it was, nonetheless, possible.