Two must-have features I am planning to add to PhishGuard are:
- Require the user to approve hyperlink activation from within e-mail clients using a security dialog that clearly displays destination URL.
- Disable all hyperlinks in e-mail clients
Implementing these two features for just Outlook and Outlook Express should stop most phishing attacks on Windows platforms. It's a brutal solution, but I am sure there are plenty of IT guys who are dying to wield these two lovely hammers.