An anonymous reader writes: This hack can be used to make two different pieces of text absolutely indistinguishable to humans.
Well this isn't actually a "security" threat, it's a threat to trust. Though the names look different to php, they look absolutely the same to the end user. And with a little trouble, a lot of pranksters can make use of this. End result, you can use any exiting members name on forums, etc. And this is just the beginning. this is achieved by using invisible soft hyphens that are not displayed by browsers, while there's no real security danger, it's a threat to digital trust everywhere.