Via Henrik is a new ‘scam detection’ method in Thunderbird. If you click on a link that follows the pattern of some phishing scams, Thunderbird will pop up a dialog asking you if this was really what you wanted to do – screenshots are here.
At the moment, it will alert the user if:
- The address includes a dotted-decimal IP address instead of a domain name, such as http://192.168.0.1/
- The domain in the link text is different to the domain that the link actually points to, such as
This doesn't cover all phishing scams but it's a good start. While I do welcome it, unless Thunderbird dramatically increases its market share it's not going to stop phishing, nor is it going to stop people from being conned. Still, hopefully it will set an example for other email client developers.
In any case, if this and the spellchecking feature are anything to go by, Thunderbird 1.1 is going to rock.