[Test Rules] [PR #4378] modified rule: Link: Single character path with credential theft body and self sender behavior

github-actions[bot] · github-actions[bot] · commit 614bfae5272a · 2026-04-23T16:39:35.000Z
diff --git a/detection-rules/4378_self_sender_cred_theft_short_path_link.yml b/detection-rules/4378_self_sender_cred_theft_short_path_link.yml
@@ -1,4 +1,4 @@
-name: "Link: Self-sent credential theft with single character path"
+name: "Link: Single character path with credential theft body and self sender behavior"
 description: "Detects messages sent to oneself containing links with single character paths and credential theft language, commonly used to bypass security filters and deliver malicious content."
 type: "rule"
 severity: "medium"
@@ -33,4 +33,4 @@ detection_methods:
 id: "d47242e9-cf63-5dea-8aba-fcd6c2226b71"
 og_id: "c97982e6-eaa2-53e3-ba8f-0dc4db55b936"
 testing_pr: 4378
-testing_sha: 022a884f707b197a59c7d3bf6a9f4252ebf49082
+testing_sha: 59f582fb35011591b4ebd4d1aed2ad835752d616
