To avoid being spoofed, Raff recommends that users manually input URLs into iPhone's Safari browser and avoid clicking on Mail links until Apple releases a fix.
Apple has acknowledged the gaping hole in its iPhone Mail application and launched an investigation into Safari's alleged vulnerability to forged URLs. ยต