Rule Name & Severity | Author | Last Updated | Labels | |
|---|---|---|---|---|
Brand impersonation: Aquent | Sublime Security | 5mo ago Oct 9th, 2025 | /feeds/core/detection-rules/brand-impersonation-aquent-5074459c | |
Brand impersonation: Aramco | Sublime Security | 1mo ago Jan 28th, 2026 | /feeds/core/detection-rules/brand-impersonation-aramco-96e87699 | |
Brand impersonation: AuthentiSign | Sublime Security | 1mo ago Jan 21st, 2026 | /feeds/core/detection-rules/brand-impersonation-authentisign-445a8c8b | |
Brand impersonation: Binance | Sublime Security | 6mo ago Sep 3rd, 2025 | /feeds/core/detection-rules/brand-impersonation-binance-c3302a76 | |
Brand impersonation: Box file sharing service | Sublime Security | 5mo ago Sep 23rd, 2025 | /feeds/core/detection-rules/brand-impersonation-box-file-sharing-service-03da310c | |
Brand impersonation: Coinbase with suspicious links | Sublime Security | 5mo ago Sep 22nd, 2025 | /feeds/core/detection-rules/brand-impersonation-coinbase-with-suspicious-links-b61e2f8e | |
Brand impersonation: Discord notification | Sublime Security | 4mo ago Oct 23rd, 2025 | /feeds/core/detection-rules/brand-impersonation-discord-notification-97007826 | |
Brand Impersonation: Disney | Sublime Security | 6d ago Mar 4th, 2026 | /feeds/core/detection-rules/brand-impersonation-disney-bf90b8fb | |
Brand impersonation: DocuSign branded attachment lure with no DocuSign links | Sublime Security | 4mo ago Oct 22nd, 2025 | /feeds/core/detection-rules/brand-impersonation-docusign-branded-attachment-lure-with-no-docusign-links-814a5694 | |
Brand impersonation: DocuSign with embedded QR code | Sublime Security | 4mo ago Oct 17th, 2025 | /feeds/core/detection-rules/brand-impersonation-docusign-with-embedded-qr-code-f5cde463 | |
Brand impersonation: Dropbox | Sublime Security | 26d ago Feb 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-dropbox-61f11d12 | |
Brand impersonation: Enbridge | Sublime Security | 1y ago Jan 24th, 2025 | /feeds/core/detection-rules/brand-impersonation-enbridge-203a6a28 | |
Brand impersonation: Evite | Sublime Security | 1mo ago Jan 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-evite-9e867a2b | |
Brand impersonation: Fake DocuSign HTML table not linking to DocuSign domains | Sublime Security | 2mo ago Dec 10th, 2025 | /feeds/core/detection-rules/brand-impersonation-fake-docusign-html-table-not-linking-to-docusign-domains-28923dde | |
Brand impersonation: Fake Fax | Sublime Security | 1mo ago Feb 5th, 2026 | /feeds/core/detection-rules/brand-impersonation-fake-fax-2a96b90a | |
Brand impersonation: File sharing notification with template artifacts | Sublime Security | 1mo ago Jan 23rd, 2026 | /feeds/core/detection-rules/brand-impersonation-file-sharing-notification-with-template-artifacts-37d89611 | |
Brand Impersonation: Gemini Trust Company | Sublime Security | 1mo ago Jan 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-gemini-trust-company-99574c94 | |
Brand impersonation: Google Careers | Sublime Security | 3mo ago Nov 12th, 2025 | /feeds/core/detection-rules/brand-impersonation-google-careers-cf2d97ad | |
Brand impersonation: Google Drive fake file share | Sublime Security | 2mo ago Dec 19th, 2025 | /feeds/core/detection-rules/brand-impersonation-google-drive-fake-file-share-b424a941 | |
Brand impersonation: Google Meet with malicious link | Sublime Security | 26d ago Feb 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-google-meet-with-malicious-link-d488d85a | |
Brand impersonation: Google using Microsoft Forms | Sublime Security | 1mo ago Jan 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-google-using-microsoft-forms-1daac608 | |
Brand impersonation: Google Workspace alert notification | Sublime Security | 3mo ago Dec 2nd, 2025 | /feeds/core/detection-rules/brand-impersonation-google-workspace-alert-notification-143ffbc4 | |
Brand impersonation: Greenvelope | Sublime Security | 3mo ago Dec 1st, 2025 | /feeds/core/detection-rules/brand-impersonation-greenvelope-9cbbf9b8 | |
Brand impersonation: Gusto | Sublime Security | 20d ago Feb 18th, 2026 | /feeds/core/detection-rules/brand-impersonation-gusto-54025c1c | |
Brand impersonation: Interac | Sublime Security | 2y ago Sep 16th, 2024 | /feeds/core/detection-rules/brand-impersonation-interac-50a883dc | |
Brand impersonation: Internal Revenue Service | Sublime Security | 1mo ago Jan 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-internal-revenue-service-3c63f8e9 | |
Brand impersonation: LastPass | Sublime Security | 5d ago Mar 5th, 2026 | /feeds/core/detection-rules/brand-impersonation-lastpass-99831d35 | |
Brand impersonation: Mailchimp | Sublime Security | 5mo ago Sep 22nd, 2025 | /feeds/core/detection-rules/brand-impersonation-mailchimp-48b454c7 | |
Brand impersonation: Marriott with gift language | Sublime Security | 1mo ago Feb 2nd, 2026 | /feeds/core/detection-rules/brand-impersonation-marriott-with-gift-language-39b32b97 | |
Brand impersonation: Microsoft | @amitchell516 | 1mo ago Feb 3rd, 2026 | /feeds/core/detection-rules/brand-impersonation-microsoft-6e2f04e6 | |
Brand impersonation: Microsoft fake sign-in alert | Sublime Security | 1mo ago Jan 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-microsoft-fake-sign-in-alert-3f4c9e7a | |
Brand impersonation: Microsoft logo in HTML with fake quarantine release notification | Sublime Security | 2mo ago Dec 10th, 2025 | /feeds/core/detection-rules/brand-impersonation-microsoft-logo-in-html-with-fake-quarantine-release-notification-f12c615c | |
Brand impersonation: Microsoft logo or suspicious language with open redirect | Sublime Security | 2y ago Mar 7th, 2024 | /feeds/core/detection-rules/brand-impersonation-microsoft-logo-or-suspicious-language-with-open-redirect-27b8d8d8 | |
Brand impersonation: Microsoft Planner with suspicious link | Sublime Security | 1mo ago Feb 6th, 2026 | /feeds/core/detection-rules/brand-impersonation-microsoft-planner-with-suspicious-link-ea363c08 | |
Brand impersonation: Microsoft quarantine release notification in body | Sublime Security | 7mo ago Jul 16th, 2025 | /feeds/core/detection-rules/brand-impersonation-microsoft-quarantine-release-notification-in-body-6d19527c | |
Brand impersonation: Microsoft quarantine release notification in image attachment | Sublime Security | 7mo ago Jul 16th, 2025 | /feeds/core/detection-rules/brand-impersonation-microsoft-quarantine-release-notification-in-image-attachment-185db6b3 | |
Brand impersonation: Microsoft Teams | Sublime Security | 2y ago Dec 3rd, 2024 | /feeds/core/detection-rules/brand-impersonation-microsoft-teams-9cd53055 | |
Brand impersonation: Microsoft Teams invitation | Sublime Security | 1mo ago Feb 6th, 2026 | /feeds/core/detection-rules/brand-impersonation-microsoft-teams-invitation-46410ad8 | |
Brand impersonation: Microsoft with low reputation links | Sublime Security | 1mo ago Jan 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-microsoft-with-low-reputation-links-b59201b6 | |
Brand impersonation: Navan | Sublime Security | 29d ago Feb 9th, 2026 | /feeds/core/detection-rules/brand-impersonation-navan-3573e9a8 | |
Brand impersonation: Norton | Sublime Security | 1mo ago Jan 12th, 2026 | /feeds/core/detection-rules/brand-impersonation-norton-32bd9efd | |
Brand impersonation: Okta | Sublime Security | 5mo ago Sep 23rd, 2025 | /feeds/core/detection-rules/brand-impersonation-okta-b7a2989a | |
Brand impersonation: Paperless Post | Sublime Security | 4mo ago Nov 6th, 2025 | /feeds/core/detection-rules/brand-impersonation-paperless-post-e9ec5e09 | |
Brand Impersonation: PayPal | Sublime Security | 25d ago Feb 13th, 2026 | /feeds/core/detection-rules/brand-impersonation-paypal-a6b2ceee | |
Brand impersonation: PNC | Sublime Security | 5mo ago Oct 9th, 2025 | /feeds/core/detection-rules/brand-impersonation-pnc-1b5ae4fb | |
Brand Impersonation: Procore | Sublime Security | 6mo ago Sep 3rd, 2025 | /feeds/core/detection-rules/brand-impersonation-procore-74baa1e5 | |
Brand impersonation: Proofpoint secure messaging without legitimate indicators | Sublime Security | 3mo ago Nov 17th, 2025 | /feeds/core/detection-rules/brand-impersonation-proofpoint-secure-messaging-without-legitimate-indicators-84b72d02 | |
Brand impersonation: Punchbowl | Sublime Security | 25d ago Feb 13th, 2026 | /feeds/core/detection-rules/brand-impersonation-punchbowl-58937ba0 | |
Brand impersonation: Purdue ePlanroom with suspicious links | Sublime Security | 3mo ago Dec 2nd, 2025 | /feeds/core/detection-rules/brand-impersonation-purdue-eplanroom-with-suspicious-links-4db5b0b6 | |
Brand impersonation: Quickbooks | Sublime Security | 1mo ago Jan 15th, 2026 | /feeds/core/detection-rules/brand-impersonation-quickbooks-4fd791d1 |