If a form appears on a server which doesn't even support SSL and is POSTing to a script on the same server directly (no call to any fancy Javascript encryption functions, just a plain old POST) it's pretty likely that information sent by a user submitting the form would be an easy target for interception at the user's network level.

I've seen a fair number of forms like the aforementioned, lurking on rental application sites, credit or background check sites, even the occasional credit card application site...

We all know they're out there - unsecured forms with fields like "Social Security Number" or "Bank Account Number". My question is, what do you do when you come across one?