I’m also getting false alarms on emails from distribution lists. It Says something about “IFrame Tag” on mail that is from Yahoogroups.

Any progress on a solution that would let you specify an exception list for the URL present in the iframe?