Email bomb detection and prevention with Sublime

Email bombs are a type of cyberattack where a large volume of emails is sent to overwhelm a target mailbox, potentially disabling it or facilitating further attacks, such as machine or account takeovers. These attacks are challenging to counter due to the sheer volume of emails and their often legitimate appearance. Sublime offers a solution by detecting sustained spikes in email volume, which are indicative of an email bomb, and using automation to sort and quarantine malicious emails. The platform employs machine learning techniques, including Attack Score, Natural Language Understanding, and Topic Modeling, to enhance detection and processing, allowing for efficient identification and remediation of email bombs. Users can benefit from customizable automations through Message Query Language, enabling them to tailor defenses to their specific needs. The system provides a detailed interface for tracking ongoing and remediated email bombs, ensuring that both automated and manual triage options are available for handling legitimate messages caught in the attack.