I just had to share this. This is a screenshot of Thunderbird 1.5 catching and flagging an e-mail as potential scam. The pop-up box warns me against opening what could potentially be a phishing site.
The clue? Check out the status bar (click to enlarge). The real link goes to nick.geico.com, but the e-mail claims the link goes to mypolicy.geico.com. A classic phishing technique.
Turns out this is actually a valid Geico URL. For some reason they think it’s a good idea to direct people to a funky URL before redirecting them to the real one. Not very helpful. But props to Thunderbird for catching it.