This detection rule identifies potential open redirect vulnerabilities utilizing the domain 'storematch.jp'. Open redirects are a common tactic in phishing and malware campaign emails, allowing attackers to forward users to malicious sites without their knowledge. The rule works by analyzing inbound messages for the URL structure originating from 'storematch.jp', specifically looking for links with the path that matches '/bc' and query parameters containing 'rd='. Moreover, it negates redirects to 'storematch.jp' to prevent exploitation, ensuring that if a user is directed there, it is not a result of an attack. Additional conditions include evaluating the sender's trustworthiness based on their profile and DMARC authentication results. This comprehensive approach is crucial in identifying fraudulent links that may be used to compromise user credentials or deliver malware, making it effective against both credential phishing and malware/ransomware attacks.