Sublime Security

Sublime Core Feed
Social engineering
Learn More
Login to Sublime
Attack Types
BEC/Fraud
Callback Phishing
Credential Phishing
Extortion
Malware/Ransomware
Reconnaissance
Spam
Tactics and Techniques
Encryption
Evasion
Exploit
Free email provider
Free file host
Free subdomain host
HTML smuggling
ICS Phishing
Image as content
Impersonation: Brand
Impersonation: Employee
Impersonation: VIP
IPFS
ISO
LNK
Lookalike domain
Macros
OneNote
Open redirect
Out of band pivot
PDF
Punycode
QR code
Scripting
Social engineering
Spoofing
Detection Methods
Archive analysis
Content analysis
Computer Vision
Exif analysis
File analysis
Header analysis
HTML analysis
Javascript analysis
Macro analysis
Natural Language Understanding
Optical Character Recognition
OLE analysis
PDF analysis
QR code analysis
Sender analysis
Threat intelligence
URL analysis
URL screenshot
Whois
XML analysis
YARA
Tactic or Technique: Social engineering
Social engineering targets people instead of systems. Attackers use persuasion, pressure, or emotional cues to get you to act quickly and bypass security tools without realizing it.
Messages often create urgency, mimic authority figures, or feel familiar enough to lower your guard. An attacker might pose as your manager asking for a quick favor, reference a recent company event, or claim your account is about to be locked. These tricks are designed to feel legitimate and get you to respond without verifying the request.
Common approaches include pretexting, where attackers invent a believable scenario; baiting, where they offer something enticing; or quid pro quo, where they offer help in exchange for access. Even a single successful interaction can lead to broader compromise, including data theft, ransomware, or a full network breach.
Blog Posts
Credential phishing Charles Schwab account holders with 2FA bypass · Blog · Sublime Security
Hiding a $50,000 BEC financial fraud in a fake email thread · Blog · Sublime Security
Callback phishing via invoice abuse and distribution list relays · Blog · Sublime Security
Talking phish over turkey · Blog · Sublime Security
Hidden credential phishing within EML attachments · Blog · Sublime Security
Living Off the Land: Credential Phishing via Docusign abuse · Blog · Sublime Security
Living Off the Land: Callback Phishing via Docusign comment · Blog · Sublime Security
Adversarial ML: Extortion via LLM Manipulation Tactics · Blog · Sublime Security
Fake invoice used to conduct $16,800 BEC attempt · Blog · Sublime Security
Gotta Catch 'Em All: Detecting PikaBot Delivery Techniques · Blog · Sublime Security
Attack Types (6):
Credential Phishing
Callback Phishing
BEC/Fraud
Malware/Ransomware
Spam
Extortion
Detection Methods (20):
Content analysis
HTML analysis
Natural Language Understanding
Header analysis
Sender analysis
URL analysis
Exif analysis
URL screenshot
Computer Vision
File analysis
QR code analysis
YARA
Optical Character Recognition
Whois
Threat intelligence
Archive analysis
Javascript analysis
Macro analysis
OLE analysis
XML analysis
Rule Name & Severity
Last Updated
Types, Tactics & Capabilities
HTML content with print styling and credential theft language
15m ago
Jun 16th, 2026
Sublime Security
Credential Phishing
Evasion
HTML smuggling
Social engineering
Content analysis
HTML analysis
Natural Language Understanding
Credential Phishing
Evasion
HTML smuggling
Social engineering
Content analysis
HTML analysis
Natural Language Understanding
Fake Zoom meeting invite with suspicious link
15m ago
Jun 16th, 2026
Sublime Security
Credential Phishing
Impersonation: Brand
Evasion
Social engineering
Content analysis
Header analysis
Natural Language Understanding
Sender analysis
URL analysis
Credential Phishing
Impersonation: Brand
Evasion
Social engineering
Content analysis
Header analysis
Natural Language Understanding
Sender analysis
URL analysis
Service abuse: IBM IAM account notification with callback scam indicators
50m ago
Jun 16th, 2026
Sublime Security
Callback Phishing
Impersonation: Brand
Social engineering
Out of band pivot
Sender analysis
Content analysis
Natural Language Understanding
Callback Phishing
Impersonation: Brand
Social engineering
Out of band pivot
Sender analysis
Content analysis
Natural Language Understanding
BEC/Fraud: Fake investment outreach from suspicious TLD
20h ago
Jun 15th, 2026
Sublime Security
BEC/Fraud
Social engineering
Header analysis
Sender analysis
Content analysis
BEC/Fraud
Social engineering
Header analysis
Sender analysis
Content analysis
Advance Fee Fraud (AFF) from freemail provider or suspicious TLD
23h ago
Jun 15th, 2026
Sublime Security
BEC/Fraud
Social engineering
Content analysis
Header analysis
Natural Language Understanding
Sender analysis
BEC/Fraud
Social engineering
Content analysis
Header analysis
Natural Language Understanding
Sender analysis
Credential phishing: Generic document sharing
23h ago
Jun 15th, 2026
Sublime Security
Credential Phishing
BEC/Fraud
Social engineering
Evasion
Impersonation: Employee
Content analysis
Natural Language Understanding
URL analysis
Sender analysis
Credential Phishing
BEC/Fraud
Social engineering
Evasion
Impersonation: Employee
Content analysis
Natural Language Understanding
URL analysis
Sender analysis
Link: Credential harvesting with excess padding evasion
23h ago
Jun 15th, 2026
Sublime Security
Credential Phishing
Evasion
Social engineering
Content analysis
HTML analysis
Exif analysis
URL screenshot
Credential Phishing
Evasion
Social engineering
Content analysis
HTML analysis
Exif analysis
URL screenshot
Observed IOC: Malicious sender email addresses
4d ago
Jun 12th, 2026
Sublime Security
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
Link: Concatenated display text concealing duplicate URLs with PDF reference
4d ago
Jun 12th, 2026
Sublime Security
Credential Phishing
Evasion
Social engineering
Content analysis
URL analysis
Credential Phishing
Evasion
Social engineering
Content analysis
URL analysis
Link: Document sharing invitation template
4d ago
Jun 12th, 2026
Sublime Security
Credential Phishing
Social engineering
Free file host
Content analysis
Credential Phishing
Social engineering
Free file host
Content analysis
Link: Suspicious file retrieval with recipient targeting
4d ago
Jun 12th, 2026
Sublime Security
Credential Phishing
Social engineering
URL analysis
Credential Phishing
Social engineering
URL analysis
Link: Flare-branded credential harvesting via Cloudflare tunnels
4d ago
Jun 12th, 2026
Sublime Security
Credential Phishing
Free subdomain host
Social engineering
Content analysis
URL analysis
Credential Phishing
Free subdomain host
Social engineering
Content analysis
URL analysis
Observed IOC: Malicious sender domains
4d ago
Jun 12th, 2026
Sublime Security
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
Observed IOC: Malicious sender root domains
4d ago
Jun 12th, 2026
Sublime Security
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
Brand impersonation: UPS
4d ago
Jun 12th, 2026
Sublime Security
Credential Phishing
Impersonation: Brand
Lookalike domain
Social engineering
Computer Vision
Sender analysis
Credential Phishing
Impersonation: Brand
Lookalike domain
Social engineering
Computer Vision
Sender analysis
Scam soliciting employer review/rating
4d ago
Jun 12th, 2026
Sublime Security
BEC/Fraud
Credential Phishing
Social engineering
Impersonation: Brand
Content analysis
Natural Language Understanding
Header analysis
Sender analysis
BEC/Fraud
Credential Phishing
Social engineering
Impersonation: Brand
Content analysis
Natural Language Understanding
Header analysis
Sender analysis
Brand impersonation: Social Security Administration
5d ago
Jun 11th, 2026
Sublime Security
BEC/Fraud
Credential Phishing
Impersonation: Brand
Social engineering
Content analysis
Sender analysis
URL analysis
BEC/Fraud
Credential Phishing
Impersonation: Brand
Social engineering
Content analysis
Sender analysis
URL analysis
Callback phishing via Apple ID display name abuse
5d ago
Jun 11th, 2026
Sublime Security
Callback Phishing
Impersonation: Brand
Out of band pivot
Social engineering
Content analysis
Natural Language Understanding
Sender analysis
Callback Phishing
Impersonation: Brand
Out of band pivot
Social engineering
Content analysis
Natural Language Understanding
Sender analysis
Brand impersonation: Adobe Sign with suspicious indicators
6d ago
Jun 10th, 2026
Sublime Security
Credential Phishing
Impersonation: Brand
Social engineering
Content analysis
Header analysis
HTML analysis
Sender analysis
Credential Phishing
Impersonation: Brand
Social engineering
Content analysis
Header analysis
HTML analysis
Sender analysis
Attachment: PDF with recipient email in link
6d ago
Jun 10th, 2026
Sublime Security
Credential Phishing
PDF
QR code
Encryption
Social engineering
File analysis
QR code analysis
URL analysis
Credential Phishing
PDF
QR code
Encryption
Social engineering
File analysis
QR code analysis
URL analysis
Page 1 of 25

Rule Name & Severity	Last Updated	Author	Types, Tactics & Capabilities
HTML content with print styling and credential theft language	15m ago Jun 16th, 2026	Sublime Security	Credential Phishing Evasion HTML smuggling Social engineering Content analysis HTML analysis Natural Language Understanding
Fake Zoom meeting invite with suspicious link	15m ago Jun 16th, 2026	Sublime Security	Credential Phishing Impersonation: Brand Evasion Social engineering Content analysis Header analysis Natural Language Understanding Sender analysis URL analysis
Service abuse: IBM IAM account notification with callback scam indicators	50m ago Jun 16th, 2026	Sublime Security	Callback Phishing Impersonation: Brand Social engineering Out of band pivot Sender analysis Content analysis Natural Language Understanding
BEC/Fraud: Fake investment outreach from suspicious TLD	20h ago Jun 15th, 2026	Sublime Security	BEC/Fraud Social engineering Header analysis Sender analysis Content analysis
Advance Fee Fraud (AFF) from freemail provider or suspicious TLD	23h ago Jun 15th, 2026	Sublime Security	BEC/Fraud Social engineering Content analysis Header analysis Natural Language Understanding Sender analysis
Credential phishing: Generic document sharing	23h ago Jun 15th, 2026	Sublime Security	Credential Phishing BEC/Fraud Social engineering Evasion Impersonation: Employee Content analysis Natural Language Understanding URL analysis Sender analysis
Link: Credential harvesting with excess padding evasion	23h ago Jun 15th, 2026	Sublime Security	Credential Phishing Evasion Social engineering Content analysis HTML analysis Exif analysis URL screenshot
Observed IOC: Malicious sender email addresses	4d ago Jun 12th, 2026	Sublime Security	BEC/Fraud Credential Phishing Malware/Ransomware Social engineering Sender analysis Header analysis
Link: Concatenated display text concealing duplicate URLs with PDF reference	4d ago Jun 12th, 2026	Sublime Security	Credential Phishing Evasion Social engineering Content analysis URL analysis
Link: Document sharing invitation template	4d ago Jun 12th, 2026	Sublime Security	Credential Phishing Social engineering Free file host Content analysis
Link: Suspicious file retrieval with recipient targeting	4d ago Jun 12th, 2026	Sublime Security	Credential Phishing Social engineering URL analysis
Link: Flare-branded credential harvesting via Cloudflare tunnels	4d ago Jun 12th, 2026	Sublime Security	Credential Phishing Free subdomain host Social engineering Content analysis URL analysis
Observed IOC: Malicious sender domains	4d ago Jun 12th, 2026	Sublime Security	BEC/Fraud Credential Phishing Malware/Ransomware Social engineering Sender analysis Header analysis
Observed IOC: Malicious sender root domains	4d ago Jun 12th, 2026	Sublime Security	BEC/Fraud Credential Phishing Malware/Ransomware Social engineering Sender analysis Header analysis
Brand impersonation: UPS	4d ago Jun 12th, 2026	Sublime Security	Credential Phishing Impersonation: Brand Lookalike domain Social engineering Computer Vision Sender analysis
Scam soliciting employer review/rating	4d ago Jun 12th, 2026	Sublime Security	BEC/Fraud Credential Phishing Social engineering Impersonation: Brand Content analysis Natural Language Understanding Header analysis Sender analysis
Brand impersonation: Social Security Administration	5d ago Jun 11th, 2026	Sublime Security	BEC/Fraud Credential Phishing Impersonation: Brand Social engineering Content analysis Sender analysis URL analysis
Callback phishing via Apple ID display name abuse	5d ago Jun 11th, 2026	Sublime Security	Callback Phishing Impersonation: Brand Out of band pivot Social engineering Content analysis Natural Language Understanding Sender analysis
Brand impersonation: Adobe Sign with suspicious indicators	6d ago Jun 10th, 2026	Sublime Security	Credential Phishing Impersonation: Brand Social engineering Content analysis Header analysis HTML analysis Sender analysis
Attachment: PDF with recipient email in link	6d ago Jun 10th, 2026	Sublime Security	Credential Phishing PDF QR code Encryption Social engineering File analysis QR code analysis URL analysis