Detection Method: Computer Vision

Computer Vision uses image recognition to analyze visual elements in messages, attachments, and web content to detect threats or impersonation attempts. It examines logos, screenshots, and HTML to find signs of phishing or fraud.
Computer Vision can detect:
  • Brand impersonation with fake logos (e.g., Microsoft, PayPal)
  • Visual elements of phishing pages, like login forms
  • CAPTCHAs used to bypass security systems
  • Malicious content disguised as legitimate visuals
For example, attackers often create fake login pages mimicking trusted brands, and Computer Vision can detect these attempts by recognizing misused logos with high confidence.
Rule Name & Severity
Last Updated
Author
Types, Tactics & Capabilities
Link: Multistage landing - Abused Adobe Acrobat hosted PDF
2d ago
Jul 14th, 2026
Sublime Security
Brand impersonation: Quickbooks
8d ago
Jul 8th, 2026
Sublime Security
Brand impersonation: Adobe with suspicious language and link
10d ago
Jul 6th, 2026
Sublime Security
Cloud storage impersonation with credential theft indicators
16d ago
Jun 30th, 2026
Sublime Security
Brand impersonation: Google Drive fake file share
20d ago
Jun 26th, 2026
Sublime Security
Brand impersonation: Fake Fax
29d ago
Jun 17th, 2026
Sublime Security
Brand impersonation: UPS
1mo ago
Jun 12th, 2026
Sublime Security
Brand impersonation: Box file sharing service
1mo ago
Jun 5th, 2026
Sublime Security
Attachment: Adobe image lure in body or attachment with suspicious link
1mo ago
Jun 5th, 2026
Sublime Security
Brand impersonation: Capital One
1mo ago
Jun 5th, 2026
Sublime Security
Open Redirect: Google domain with /url path and suspicious indicators
1mo ago
Jun 5th, 2026
Sublime Security
Brand impersonation: Zoom
1mo ago
Jun 5th, 2026
Sublime Security
Brand impersonation: Microsoft with low reputation links
1mo ago
Jun 5th, 2026
Sublime Security
Brand impersonation: Microsoft logo or suspicious language with open redirect
1mo ago
Jun 5th, 2026
Sublime Security
Brand impersonation: Okta
1mo ago
Jun 5th, 2026
Sublime Security
Credential phishing: DocuSign embedded image lure with no DocuSign domains in links
1mo ago
Jun 5th, 2026
Sublime Security
Credential phishing link (unknown sender)
1mo ago
Jun 5th, 2026
Sublime Security
Brand impersonation: USPS
1mo ago
Jun 1st, 2026
Sublime Security
Brand impersonation: Adobe Acrobat Sign PDF phishing file format template
1mo ago
Jun 1st, 2026
Sublime Security
Brand impersonation: Sharepoint
1mo ago
Jun 1st, 2026
Sublime Security