Could you please extend the advisory function to find fishing e-mail with suspicious link.
For example , the e-mail is html formatted and if it has link with different address like below
This should be suspicious e-mail because it has different link between displayed URL and the really linked URL.
This should be treated as suspicious e-mail, and it should be displayed without html formatted.
Thanks for submitting an idea to the Mozilla Connect community! Your idea is now open to votes (aka kudos) and comments.
That is covered in the scam detector. Thunderbird detects those sorts of changes and others in making its simplistic determination that a message may be a scam.