https://issues.apache.org/SpamAssassin/show_bug.cgi?id=7002
Bug ID: 7002
Summary: Legitimate AT&T email triggers EMAIL_URI_PHISH
Product: Spamassassin
Version: 3.3.2
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: Rules
Assignee: [email protected]
Reporter: [email protected]
I've just finished tracing a FP on a legitimate AT&T bill notice email due in
large part to EMAIL_URI_PHISH, from __EMAIL_PHISH's sub __UPGR_MAILBOX.
I'll see if I can get permission from the recipient to attach the message for
reference, but the rendered HTML contains a link with "Update your email
address" as the link text, which triggers __UPGR_MAILBOX.
EMAIL_URI_PHISH should probably use __EMAIL_PHISH_MANY instead of
__EMAIL_PHISH, and/or reduce the score from 4 points.
The message also hit __TVD_PH_BODY_ACCOUNTS_POST, on the text fragment "secure
AutoPay from your checking account".
--
You are receiving this mail because:
You are the assignee for the bug.
