Sublime Security

We’re excited to announce that Sublime has raised $150M in a Series C led by @Georgian_io, joined by new investors @Avenir_Growth, @01Advisors, @jonoberheide, and @nicoleperlroth, and existing investors @IndexVentures, @IVP, @slow, and @CitiVentures. This year we launched ASA and ADÉ, our AI agents that autonomously triage threats and auto-adapt coverage, freeing security teams from repetitive work and delivering rapid, tailored defenses. We’ve grown our customer base 4x since the beginning of the year while maintaining zero enterprise customer churn since company inception. This funding accelerates our vision to deliver autonomous email security that adapts to each organization's unique needs, stopping sophisticated attacks while eliminating the manual work and vendor bottlenecks of legacy solutions. Thank you to our customers, partners, and investors for being on this journey with us. 🔗 Read more: sublime.security/blog/sublime-r…

Excited to share that Valimail is now an official Sublime Security alliance partner! 📷 Valimail locks down outbound authentication to block spoofing and impersonation at the source. Combined with Sublime's tailored inbound detection that's purpose-built to catch BEC, targeted phishing, and vendor compromise with full transparency and control — it's a stronger defense across the full email attack surface. Check out Valimail's announcement to learn more: valimail.com/blog/introduci…

🚨 Threat actors are now using JavaScript virtual machines to hide phishing payloads inside HTML attachments. Sublime Threat Intelligence and Research (STIR) observed FlowerStorm operators adopting KrakVM just weeks after its release. The campaign included: • VM-based obfuscation • Credential harvesting • Real-time MFA interception A key takeaway: advanced obfuscation is becoming easier to operationalize. Our latest research breaks down the attack chain and what defenders should watch for next. sublime.security/blog/flowersto… #Cybersecurity #Phishing

“Autonomous” is everywhere in security AI right now. But most products are still in the assisted or guided stage, not true autonomy. One thing we’ve learned: Autonomy is not a feature. It’s earned trust. We built a framework for evaluating trustworthy AI: - The 5 levels of AI autonomy - How to evaluate vendors beyond demos - Why evidence matters more than claims sublime.security/blog/introduci… #Cybersecurity #SecurityAI

🏆 Excited to share we are finalists in the 2026 Security Awards by The Cloud Awards! We're honored to be recognized for our work in email security alongside some incredible companies. 👉 cloud-awards.com #CloudAwards #SecurityAwards #Cybersecurity

Excited to announce: Sublime has been named a Rising in Cyber 2026 honoree! 🏆 Selected by 150 active CISOs, this list recognizes the 30 most promising cybersecurity startups shaping enterprise security, and we're proud to be recognized for our work in email security. 🔗 notablecap.com/risingincyber #RisingInCyber #AISecurity #Cybersecurity

🚨 Quarantine Digests are now generally available for all Sublime Enterprise customers. Security teams shouldn’t have to choose between: ❌ one-click user releases ❌ endless “where’s my email?” tickets With Quarantine Digests: ✅ Users see what was quarantined ✅ Users can request releases directly ✅ SOC teams approve every restore ✅ Every action is fully audited The result: Fewer help desk tickets. Faster workflows. No loss of control. Read more: sublime.security/blog/quarantin…

Most prompt injection examples online are attention-grabbing, but not what we’re seeing in email security. <1% are direct “ignore previous instructions.” Instead: indirect prompt injection influencing AI-driven classification. Attackers: • embed benign-looking HTML • dilute malicious signals • push toward a benign verdict Not overrides. Influence within design. Breakdown + real examples: sublime.security/blog/prompt-in… #CyberSecurity #AISecurity #EmailSecurity #PromptInjection

BEC was driving At-Bay’s financial fraud losses. Legacy tools weren’t catching increasingly sophisticated attacks. After switching to Sublime: • ~100% reduction in BEC fraud losses • Detection of attacks others missed • Deployment in <48 hours How they did it: sublime.security/customers/at-b…

AI content is everywhere. Most “AI tells”? Noisy. But used right, they still work. May 13: Alex Orleans + Luke Wescott on making AI signals useful. • Real-world examples • Signal stacking • Less analyst work Register: sublime.security/events/ai-sign…

Sublime is now 100% channel-led. Our partner program launches today. Deliver agentic email security that adapts in hours, with transparent decisions and control when you need it. 🔗 Learn more: sublime.security/blog/sublime-i…

“Sublime is one of those tools that just works.” @huel cut email security noise fast: • 95% fewer IT tickets • 100% detection of targeted attacks • Zero false positives Read the story: sublime.security/customers/huel…

Executive impersonation has always worked in financial services. AI is making it scale. Faster recon. More convincing lures. Multi-stage threads that feel real. So what’s actually changing? • Why finance is targeted beyond just money • How “skip-level” impersonation works • Where AI is accelerating these attacks • Defenses that still hold up If you are protecting high-value transactions or sensitive data, this is worth your time. sublime.security/blog/how-ai-is…

Sublime Security has been shortlisted for the 2026 Cloud Security Awards Email is still one of the fastest-evolving attack surfaces - and one of the most targeted. This recognition highlights the work we’re doing to help organizations detect and stop threats with adaptive, autonomous protection. Appreciate The Cloud Awards and our customers who trust us to secure their inboxes. See the list: cloud-awards.com/2026-cloud-sec…

AI-generated content is everywhere. Which makes most AI “tells” in email detection noisy and unreliable. So why use them? Because when applied correctly, they still add real value. We’ll show how ⬇️ sublime.security/events/ai-sign…

AI agents are exploding in 2026. So is the prompt injection attack surface. Privileged agents without guardrails = autonomous zero-days. How we secure ours: sublime.security/blog/how-subli…

📣 Last call: join us tomorrow (April 8) Executive impersonation in financial services is evolving fast. We’ll cover what we’re seeing and how to stop it. 🎟️ sublime.security/events/executi… #CyberSecurity #BEC #EmailSecurity

“THIS ATTACK ONLY WORKS ON WINDOWS!” (x5) Also from Yahoo, so you know it is serious. This April Fools', read about attackers making a fool of themselves: sublime.security/blog/april-foo…

RSAC 2026 was a big week for Sublime. We spent it talking to customers, partners, and security teams. And the same questions kept coming up: AI, product differentiation, and how the platform actually works. So we asked our SE William Mireles to break it down: 🔗 sublime.security/blog/sublime-a…

Sublime earned 14 Enterprise badges in G2 Spring 2026 report, including Best Support and Easiest Setup. Built for speed, scale, and teams that expect more from email security. Details: sublime.security/blog/sublime-e…