• Open redirect

Tactic or Technique: Open redirect

Attackers abuse open redirect vulnerabilities to make malicious links appear trustworthy. These links begin with a legitimate domain, but when clicked, they send you to a completely different site—often one used for phishing or malware delivery.
It often begins with a link like “trusted-company[.]com/redirect?url=malicious-site[.]com” to bypass filters and build false confidence. Since the domain looks familiar, you’re more likely to trust it and click through. Behind the scenes, you’re immediately redirected to an attacker-controlled page.
This tactic works because many users and security tools only check the start of a URL. It’s frequently used in credential phishing and malware campaigns, especially when combined with realistic branding that makes the message feel like it came from a legitimate source.
Attack Types (3):
Credential Phishing
Malware/Ransomware
Spam
Detection Methods (4):
Sender analysis
URL analysis
HTML analysis
Content analysis
Rule Name & Severity
Last Updated
Author
Types, Tactics & Capabilities
Open Redirect: business.google.com website_shared URL Param
25d ago
Apr 28th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-businessgooglecom-websiteshared-url-param-f146be73
Open Redirect: adnxs.com
25d ago
Apr 28th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-adnxscom-7fc92916
Google Presentation Open Redirect Phishing
29d ago
Apr 24th, 2025
Sublime Security
Credential Phishing
Evasion
Open redirect
Social engineering
URL analysis
HTML analysis
/feeds/core/detection-rules/google-presentation-open-redirect-phishing-5d01ee3a
Open redirect: Linkedin
1mo ago
Apr 15th, 2025
@xNymia
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-linkedin-5ad2ffae
Open Redirect: whitefox.pl
1mo ago
Apr 2nd, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-whitefoxpl-18b74a2a
Open Redirect: mindmixer.com
1mo ago
Mar 27th, 2025
Sublime Security
Credential Phishing
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-mindmixercom-48e42896
Open Redirect: labcluster.com
2mo ago
Mar 20th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-labclustercom-d4a65b59
Open Redirect: smore.com
2mo ago
Mar 20th, 2025
Sublime Security
Credential Phishing
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-smorecom-666cb33d
Open Redirect: tkqlhce.com
2mo ago
Mar 20th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-tkqlhcecom-44eef073
Open Redirect: Cartoon Network
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Spam
Open redirect
Evasion
Content analysis
URL analysis
/feeds/core/detection-rules/open-redirect-cartoon-network-7435e057
Open Redirect: Bitrix24 URL Path
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-bitrix24-url-path-e3c85e59
Open Redirect: weblinkconnect.com
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Evasion
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-weblinkconnectcom-967f7a11
Open Redirect: eaoko.org
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-eaokoorg-f8fd9912
Open Redirect: agena-smile.com
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-agena-smilecom-4a8ebce6
Open Redirect: buildingengines.com
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-buildingenginescom-93df711e
Open Redirect: obunsha.co.jp
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-obunshacojp-e972dacf
Open Redirect: Samsung
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-samsung-164ece9a
Open Redirect: amaterasu-for-website-5.com
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-amaterasu-for-website-5com-d31f7cb8
Open Redirect: shoppermeet.net
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Malware/Ransomware
Open redirect
Sender analysis
URL analysis
/feeds/core/detection-rules/open-redirect-shoppermeetnet-fe105c91
Open Redirect: Shibboleth SSO Logout Return Parameter
2mo ago
Mar 18th, 2025
Sublime Security
Credential Phishing
Open redirect
Evasion
HTML analysis
URL analysis
Sender analysis
/feeds/core/detection-rules/open-redirect-shibboleth-sso-logout-return-parameter-374b7517