This rule identifies potential abuse of the Shopify platform, specifically through the manipulation of myshopify.com links to circumvent domain reputation checks. Attackers are leveraging these links as part of their credential phishing and spam attacks. The detection strategy involves thorough analysis methods including content analysis, header analysis, and URL analysis to identify suspicious uses of myshopify.com. The associated tactics include evasion techniques, misuse of free subdomain hosting, brand impersonation, and social engineering methods to entice users into malicious activities. The rule emphasizes a medium-severity level, indicating a significant risk for organizations that utilize Shopify services, requiring timely responses and monitoring to mitigate potential threats.