MODERNIZE: Thunderbird’s Scam Detection including some text about Kobbold (links only visible in forwarded emails because of TB& other email clients altering CSS iin forwarded emails)

[rtanglao]

• MODERNIZE: SUMO KB Article: Thunderbird’s Scam Detection including some text about Kobbold (links only visible in forwarded emails because of TB & other email clients altering CSS in forwarded emails)

• See Kobold letters, aka phishing links that are only visible in forwarded emails – Lutra Security

• Matrix Thread in #Thunderbird Comms

  • good point from Andrei: if you're using non-encrypted email as the primary way to communicate sensitive details and instructions, the best time to stop was 20 years ago. The second best is today.

• Screenshot of workaround:

• [ ] Modernize Screenshots

• [ ] Add Kobold workaround: View > Message Body As > Simple HTML

[rtanglao]

• @Sancus wrote "If you are really, truly using email for things where targeted attacks with hidden CSS in forwards/replies are a serious security concern, the best advice is to turn simple HTML on. But the reality is that most people aren't using email that way and we can't degrade the experience of everyone using the client by default to protect those that are." <-- so maybe incorporate some text like this into the article