Rule Name & Severity | Author | Last Updated | Labels | |
|---|---|---|---|---|
Scam: Piano giveaway | Sublime Security | 10d ago Dec 11th, 2025 | /feeds/core/detection-rules/scam-piano-giveaway-1a91a203 | |
Service abuse: Google Drive share from an unsolicited reply-to address | Sublime Security | 4mo ago Aug 5th, 2025 | /feeds/core/detection-rules/service-abuse-google-drive-share-from-an-unsolicited-reply-to-address-4581ec0c | |
Service abuse: Google Drive share from new reply-to domain | Sublime Security | 1mo ago Nov 13th, 2025 | /feeds/core/detection-rules/service-abuse-google-drive-share-from-new-reply-to-domain-c1a2d367 | |
Spam: Default Microsoft Exchange Online sender domain (onmicrosoft.com) | Sublime Security | 5mo ago Jul 16th, 2025 | /feeds/core/detection-rules/spam-default-microsoft-exchange-online-sender-domain-onmicrosoftcom-3f2a64ce | |
Spam: Fake dating profile notification | Sublime Security | 18d ago Dec 3rd, 2025 | /feeds/core/detection-rules/spam-fake-dating-profile-notification-0f33fea2 | |
Spam: New link domain (<=10d) and emojis | Sublime Security | 5mo ago Jul 16th, 2025 | /feeds/core/detection-rules/spam-new-link-domain-less10d-and-emojis-33677993 | |
Spam: Sexually explicit Google Drive share | Sublime Security | 4mo ago Aug 5th, 2025 | /feeds/core/detection-rules/spam-sexually-explicit-google-drive-share-3f951c06 | |
Spam: Sexually explicit Google group invitation | Sublime Security | 1mo ago Nov 12th, 2025 | /feeds/core/detection-rules/spam-sexually-explicit-google-group-invitation-4e0bec29 | |
Spam: Sexually explicit Looker Studio report | Sublime Security | 2mo ago Oct 2nd, 2025 | /feeds/core/detection-rules/spam-sexually-explicit-looker-studio-report-f1e649cd | |
Spam: SMTP & Proxy Communications in Email Body | Sublime Security | 19d ago Dec 2nd, 2025 | /feeds/core/detection-rules/spam-smtp-and-proxy-communications-in-email-body-2bdc6a3b | |
Spam: Unsolicited malformed PDF | Sublime Security | 5mo ago Jul 16th, 2025 | /feeds/core/detection-rules/spam-unsolicited-malformed-pdf-f0c50031 | |
Spam: URL shortener with short body content and emojis | Sublime Security | 5mo ago Jul 23rd, 2025 | /feeds/core/detection-rules/spam-url-shortener-with-short-body-content-and-emojis-b7797e4c | |
Suspicious mailer received from Gmail servers | Sublime Security | 5mo ago Jul 16th, 2025 | /feeds/core/detection-rules/suspicious-mailer-received-from-gmail-servers-f05f04ee | |
Suspicious request for financial information | Sublime Security | 15d ago Dec 6th, 2025 | /feeds/core/detection-rules/suspicious-request-for-financial-information-4ebdaa4d | |
Suspicious SharePoint file sharing | Sublime Security | 4mo ago Aug 5th, 2025 | /feeds/core/detection-rules/suspicious-sharepoint-file-sharing-971c3d9c | |
VIP Impersonation via Google Group relay with suspicious indicators | Sublime Security | 1mo ago Nov 12th, 2025 | /feeds/core/detection-rules/vip-impersonation-via-google-group-relay-with-suspicious-indicators-57f9cd3b |