Sublime Core Feed

This repo contains open-source Rules for Sublime, a free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing.

Sublime Security
Last updated Apr 24th, 2026
Feed Source
Tactic or Technique is
Rule Name & Severity
Author
Last Updated
Labels
Brand impersonation: Ledger
Sublime Security
1y ago
Jan 3rd, 2025
Brand impersonation: LinkedIn
Sublime Security
3mo ago
Jan 12th, 2026
Brand impersonation: Mailchimp
Sublime Security
25d ago
Mar 30th, 2026
Brand impersonation: Marriott with gift language
Sublime Security
2mo ago
Feb 2nd, 2026
Brand impersonation: McAfee
Sublime Security
15d ago
Apr 9th, 2026
Brand impersonation: Meta and subsidiaries
Sublime Security
1mo ago
Mar 20th, 2026
Brand impersonation: MetaMask
Sublime Security
7mo ago
Sep 22nd, 2025
Brand impersonation: Microsoft
@amitchell516
2mo ago
Feb 3rd, 2026
Brand impersonation: Microsoft fake sign-in alert
Sublime Security
3mo ago
Jan 12th, 2026
Brand impersonation: Microsoft logo in HTML with fake quarantine release notification
Sublime Security
4mo ago
Dec 10th, 2025
Brand impersonation: Microsoft logo or suspicious language with open redirect
Sublime Security
2y ago
Mar 7th, 2024
Brand impersonation: Microsoft Planner with suspicious link
Sublime Security
2mo ago
Feb 6th, 2026
Brand impersonation: Microsoft (QR code)
Sublime Security
3mo ago
Jan 12th, 2026
Brand impersonation: Microsoft quarantine release notification in body
Sublime Security
9mo ago
Jul 16th, 2025
Brand impersonation: Microsoft quarantine release notification in image attachment
Sublime Security
9mo ago
Jul 16th, 2025
Brand impersonation: Microsoft Teams
Sublime Security
2y ago
Dec 3rd, 2024
Brand impersonation: Microsoft Teams invitation
Sublime Security
2mo ago
Feb 6th, 2026
Brand impersonation: Microsoft with embedded logo and credential theft language
Sublime Security
6mo ago
Oct 17th, 2025
Brand impersonation: Microsoft with low reputation links
Sublime Security
3mo ago
Jan 12th, 2026
Brand impersonation: Navan
Sublime Security
2mo ago
Feb 9th, 2026
Brand impersonation: Netflix
min0k
2mo ago
Feb 3rd, 2026
Brand impersonation: Norton
Sublime Security
3mo ago
Jan 12th, 2026
Brand impersonation: Office 365 mail service
Sublime Security
2mo ago
Jan 29th, 2026
Brand impersonation: Okta
Sublime Security
7mo ago
Sep 23rd, 2025
Brand impersonation: OpenAI with payment issues
Sublime Security
2d ago
Apr 22nd, 2026
Brand impersonation: Outlook
Sublime Security
2y ago
May 29th, 2024
Brand Impersonation: PayPal
Sublime Security
25d ago
Mar 30th, 2026
Brand impersonation: PNC
Sublime Security
6mo ago
Oct 9th, 2025
Brand Impersonation: Procore
Sublime Security
1mo ago
Mar 20th, 2026
Brand impersonation: Proofpoint secure messaging without legitimate indicators
Sublime Security
5mo ago
Nov 17th, 2025
Brand impersonation: Punchbowl
Sublime Security
2mo ago
Feb 13th, 2026
Brand impersonation: Purdue ePlanroom with suspicious links
Sublime Security
4mo ago
Dec 2nd, 2025
Brand impersonation: Quickbooks
Sublime Security
3mo ago
Jan 15th, 2026
Brand impersonation: QuickBooks notification from Intuit themed company name
Sublime Security
3mo ago
Jan 12th, 2026
Brand impersonation: Ripple
Sublime Security
9mo ago
Jul 16th, 2025
Brand impersonation: Robert Half
Sublime Security
6mo ago
Oct 1st, 2025
Brand impersonation: Robinhood
Sublime Security
29d ago
Mar 26th, 2026
Brand impersonation: SendGrid
Sublime Security
1mo ago
Mar 12th, 2026
Brand impersonation: Sharepoint
Sublime Security
3mo ago
Jan 10th, 2026
Brand impersonation: Sharepoint fake file share
Sublime Security
3mo ago
Jan 12th, 2026
Brand impersonation: SharePoint PDF attachment with credential theft language
Sublime Security
5mo ago
Nov 7th, 2025
Brand Impersonation: Shein
Sublime Security
6mo ago
Oct 15th, 2025
Brand impersonation: Silicon Valley Bank
Sublime Security
3mo ago
Jan 12th, 2026
Brand impersonation: SiriusXM
Sublime Security
8mo ago
Aug 5th, 2025
Brand impersonation: Spotify
Sublime Security
9mo ago
Jul 16th, 2025
Brand impersonation: Square
Sublime Security
6mo ago
Oct 16th, 2025
Brand impersonation: Squarespace
Sublime Security
7mo ago
Sep 11th, 2025
Brand impersonation: State Farm
Sublime Security
4mo ago
Dec 17th, 2025
Brand impersonation: Stellar Development Foundation (SDF)
Sublime Security
9mo ago
Jul 16th, 2025
Brand Impersonation: Stripe
Sublime Security
3mo ago
Jan 12th, 2026