Sublime Security

Sublime Core Feed
Social engineering
Learn More
Login to Sublime
Attack Types
BEC/Fraud
Callback Phishing
Credential Phishing
Extortion
Malware/Ransomware
Reconnaissance
Spam
Tactics and Techniques
Encryption
Evasion
Exploit
Free email provider
Free file host
Free subdomain host
HTML smuggling
ICS Phishing
Image as content
Impersonation: Brand
Impersonation: Employee
Impersonation: VIP
IPFS
ISO
LNK
Lookalike domain
Macros
OneNote
Open redirect
Out of band pivot
PDF
Punycode
QR code
Scripting
Social engineering
Spoofing
Detection Methods
Archive analysis
Content analysis
Computer Vision
Exif analysis
File analysis
Header analysis
HTML analysis
Javascript analysis
Macro analysis
Natural Language Understanding
Optical Character Recognition
OLE analysis
PDF analysis
QR code analysis
Sender analysis
Threat intelligence
URL analysis
URL screenshot
Whois
XML analysis
YARA
Tactic or Technique: Social engineering
Social engineering targets people instead of systems. Attackers use persuasion, pressure, or emotional cues to get you to act quickly and bypass security tools without realizing it.
Messages often create urgency, mimic authority figures, or feel familiar enough to lower your guard. An attacker might pose as your manager asking for a quick favor, reference a recent company event, or claim your account is about to be locked. These tricks are designed to feel legitimate and get you to respond without verifying the request.
Common approaches include pretexting, where attackers invent a believable scenario; baiting, where they offer something enticing; or quid pro quo, where they offer help in exchange for access. Even a single successful interaction can lead to broader compromise, including data theft, ransomware, or a full network breach.
Blog Posts
Credential phishing Charles Schwab account holders with 2FA bypass · Blog · Sublime Security
Hiding a $50,000 BEC financial fraud in a fake email thread · Blog · Sublime Security
Callback phishing via invoice abuse and distribution list relays · Blog · Sublime Security
Talking phish over turkey · Blog · Sublime Security
Hidden credential phishing within EML attachments · Blog · Sublime Security
Living Off the Land: Credential Phishing via Docusign abuse · Blog · Sublime Security
Living Off the Land: Callback Phishing via Docusign comment · Blog · Sublime Security
Adversarial ML: Extortion via LLM Manipulation Tactics · Blog · Sublime Security
Fake invoice used to conduct $16,800 BEC attempt · Blog · Sublime Security
Gotta Catch 'Em All: Detecting PikaBot Delivery Techniques · Blog · Sublime Security
Attack Types (6):
Credential Phishing
Spam
BEC/Fraud
Callback Phishing
Malware/Ransomware
Extortion
Detection Methods (20):
Natural Language Understanding
Sender analysis
URL analysis
Content analysis
Header analysis
Computer Vision
File analysis
HTML analysis
Whois
Exif analysis
URL screenshot
Optical Character Recognition
QR code analysis
Archive analysis
Javascript analysis
YARA
Threat intelligence
Macro analysis
OLE analysis
XML analysis
Rule Name & Severity
Last Updated
Types, Tactics & Capabilities
Link: Google Forms link with credential theft language
20h ago
May 11th, 2026
Sublime Security
Credential Phishing
Social engineering
Natural Language Understanding
Sender analysis
URL analysis
Credential Phishing
Social engineering
Natural Language Understanding
Sender analysis
URL analysis
Service abuse: Demio notifications with suspicious content patterns
22h ago
May 11th, 2026
Sublime Security
Spam
Social engineering
Impersonation: Brand
Sender analysis
Content analysis
Spam
Social engineering
Impersonation: Brand
Sender analysis
Content analysis
Benefits enrollment impersonation
22h ago
May 11th, 2026
Sublime Security
Credential Phishing
Evasion
Impersonation: Employee
Out of band pivot
Social engineering
Content analysis
Header analysis
Sender analysis
Credential Phishing
Evasion
Impersonation: Employee
Out of band pivot
Social engineering
Content analysis
Header analysis
Sender analysis
Investor solicitation with organization targeting
4d ago
May 8th, 2026
Sublime Security
BEC/Fraud
Social engineering
Content analysis
BEC/Fraud
Social engineering
Content analysis
Brand impersonation: FedEx
4d ago
May 8th, 2026
Sublime Security
Credential Phishing
Impersonation: Brand
Lookalike domain
Social engineering
Header analysis
Sender analysis
Credential Phishing
Impersonation: Brand
Lookalike domain
Social engineering
Header analysis
Sender analysis
Brand impersonation: Quickbooks
4d ago
May 8th, 2026
Sublime Security
Callback Phishing
Credential Phishing
Impersonation: Brand
Social engineering
Computer Vision
Content analysis
Header analysis
Sender analysis
Callback Phishing
Credential Phishing
Impersonation: Brand
Social engineering
Computer Vision
Content analysis
Header analysis
Sender analysis
Service abuse: Microsoft with suspicious indicators in subject
5d ago
May 7th, 2026
Sublime Security
Credential Phishing
Spam
Impersonation: Brand
Social engineering
Sender analysis
Content analysis
Credential Phishing
Spam
Impersonation: Brand
Social engineering
Sender analysis
Content analysis
Observed IOC: Malicious domains in body links
5d ago
May 7th, 2026
Sublime Security
Credential Phishing
Malware/Ransomware
Evasion
Social engineering
URL analysis
Content analysis
Credential Phishing
Malware/Ransomware
Evasion
Social engineering
URL analysis
Content analysis
Observed IOC: Malicious sender email addresses
5d ago
May 7th, 2026
Sublime Security
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
Observed IOC: Malicious sender domains
5d ago
May 7th, 2026
Sublime Security
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
BEC/Fraud
Credential Phishing
Malware/Ransomware
Social engineering
Sender analysis
Header analysis
Brand Impersonation: PayPal
5d ago
May 7th, 2026
Sublime Security
Credential Phishing
Impersonation: Brand
Lookalike domain
Social engineering
Computer Vision
Content analysis
File analysis
Header analysis
Sender analysis
Credential Phishing
Impersonation: Brand
Lookalike domain
Social engineering
Computer Vision
Content analysis
File analysis
Header analysis
Sender analysis
Business Email Compromise (BEC) with request for mobile number
5d ago
May 7th, 2026
Sublime Security
BEC/Fraud
Social engineering
Content analysis
Natural Language Understanding
Sender analysis
BEC/Fraud
Social engineering
Content analysis
Natural Language Understanding
Sender analysis
Service abuse: Dropbox Paper with copy-paste instructions
5d ago
May 7th, 2026
Sublime Security
Credential Phishing
Social engineering
Free file host
Evasion
Content analysis
URL analysis
Credential Phishing
Social engineering
Free file host
Evasion
Content analysis
URL analysis
Link: Suspicious Loom HTML file path
6d ago
May 6th, 2026
Sublime Security
Credential Phishing
Impersonation: Brand
Social engineering
HTML analysis
URL analysis
Credential Phishing
Impersonation: Brand
Social engineering
HTML analysis
URL analysis
Brand impersonation: Booking.com
6d ago
May 6th, 2026
Sublime Security
Credential Phishing
Impersonation: Brand
Social engineering
Natural Language Understanding
Header analysis
Sender analysis
Credential Phishing
Impersonation: Brand
Social engineering
Natural Language Understanding
Header analysis
Sender analysis
Suspicious newly registered reply-to domain with engaging financial or urgent language
6d ago
May 6th, 2026
Sublime Security
BEC/Fraud
Social engineering
Content analysis
Header analysis
Natural Language Understanding
Sender analysis
URL analysis
Whois
BEC/Fraud
Social engineering
Content analysis
Header analysis
Natural Language Understanding
Sender analysis
URL analysis
Whois
Callback phishing via calendar invite
6d ago
May 6th, 2026
Sublime Security
Callback Phishing
Social engineering
Evasion
ICS Phishing
File analysis
Header analysis
Natural Language Understanding
Sender analysis
Callback Phishing
Social engineering
Evasion
ICS Phishing
File analysis
Header analysis
Natural Language Understanding
Sender analysis
Link: Cloud service with credential theft language
6d ago
May 6th, 2026
Sublime Security
Credential Phishing
Social engineering
Content analysis
Natural Language Understanding
Sender analysis
URL analysis
Credential Phishing
Social engineering
Content analysis
Natural Language Understanding
Sender analysis
URL analysis
Service Abuse: Zoom with freemail reply-to and recipient address in greeting
6d ago
May 6th, 2026
Sublime Security
Spam
Free email provider
Social engineering
Sender analysis
Header analysis
Content analysis
Spam
Free email provider
Social engineering
Sender analysis
Header analysis
Content analysis
Link: Romance/Sexual Language With Suspicious Link
7d ago
May 5th, 2026
Sublime Security
Spam
Social engineering
Content analysis
Header analysis
URL analysis
Whois
Spam
Social engineering
Content analysis
Header analysis
URL analysis
Whois
Page 1 of 25

Rule Name & Severity	Last Updated	Author	Types, Tactics & Capabilities
Link: Google Forms link with credential theft language	20h ago May 11th, 2026	Sublime Security	Credential Phishing Social engineering Natural Language Understanding Sender analysis URL analysis
Service abuse: Demio notifications with suspicious content patterns	22h ago May 11th, 2026	Sublime Security	Spam Social engineering Impersonation: Brand Sender analysis Content analysis
Benefits enrollment impersonation	22h ago May 11th, 2026	Sublime Security	Credential Phishing Evasion Impersonation: Employee Out of band pivot Social engineering Content analysis Header analysis Sender analysis
Investor solicitation with organization targeting	4d ago May 8th, 2026	Sublime Security	BEC/Fraud Social engineering Content analysis
Brand impersonation: FedEx	4d ago May 8th, 2026	Sublime Security	Credential Phishing Impersonation: Brand Lookalike domain Social engineering Header analysis Sender analysis
Brand impersonation: Quickbooks	4d ago May 8th, 2026	Sublime Security	Callback Phishing Credential Phishing Impersonation: Brand Social engineering Computer Vision Content analysis Header analysis Sender analysis
Service abuse: Microsoft with suspicious indicators in subject	5d ago May 7th, 2026	Sublime Security	Credential Phishing Spam Impersonation: Brand Social engineering Sender analysis Content analysis
Observed IOC: Malicious domains in body links	5d ago May 7th, 2026	Sublime Security	Credential Phishing Malware/Ransomware Evasion Social engineering URL analysis Content analysis
Observed IOC: Malicious sender email addresses	5d ago May 7th, 2026	Sublime Security	BEC/Fraud Credential Phishing Malware/Ransomware Social engineering Sender analysis Header analysis
Observed IOC: Malicious sender domains	5d ago May 7th, 2026	Sublime Security	BEC/Fraud Credential Phishing Malware/Ransomware Social engineering Sender analysis Header analysis
Brand Impersonation: PayPal	5d ago May 7th, 2026	Sublime Security	Credential Phishing Impersonation: Brand Lookalike domain Social engineering Computer Vision Content analysis File analysis Header analysis Sender analysis
Business Email Compromise (BEC) with request for mobile number	5d ago May 7th, 2026	Sublime Security	BEC/Fraud Social engineering Content analysis Natural Language Understanding Sender analysis
Service abuse: Dropbox Paper with copy-paste instructions	5d ago May 7th, 2026	Sublime Security	Credential Phishing Social engineering Free file host Evasion Content analysis URL analysis
Link: Suspicious Loom HTML file path	6d ago May 6th, 2026	Sublime Security	Credential Phishing Impersonation: Brand Social engineering HTML analysis URL analysis
Brand impersonation: Booking.com	6d ago May 6th, 2026	Sublime Security	Credential Phishing Impersonation: Brand Social engineering Natural Language Understanding Header analysis Sender analysis
Suspicious newly registered reply-to domain with engaging financial or urgent language	6d ago May 6th, 2026	Sublime Security	BEC/Fraud Social engineering Content analysis Header analysis Natural Language Understanding Sender analysis URL analysis Whois
Callback phishing via calendar invite	6d ago May 6th, 2026	Sublime Security	Callback Phishing Social engineering Evasion ICS Phishing File analysis Header analysis Natural Language Understanding Sender analysis
Link: Cloud service with credential theft language	6d ago May 6th, 2026	Sublime Security	Credential Phishing Social engineering Content analysis Natural Language Understanding Sender analysis URL analysis
Service Abuse: Zoom with freemail reply-to and recipient address in greeting	6d ago May 6th, 2026	Sublime Security	Spam Free email provider Social engineering Sender analysis Header analysis Content analysis
Link: Romance/Sexual Language With Suspicious Link	7d ago May 5th, 2026	Sublime Security	Spam Social engineering Content analysis Header analysis URL analysis Whois