diff --git a/detection-rules/impersonation_google_drive_file_share.yml b/detection-rules/impersonation_google_drive_file_share.yml
index 665c3239e30..92350c887ed 100644
--- a/detection-rules/impersonation_google_drive_file_share.yml
+++ b/detection-rules/impersonation_google_drive_file_share.yml
@@ -21,7 +21,8 @@ source: |
                           "*shared this document*",
                           "*shared an item*",
                           "*received this email because you*",
-                          "*shared a*with you*"
+                          "*shared a*with you*",
+                          "*automated *mail from google*drive*"
             )
         )
         //
@@ -38,7 +39,8 @@ source: |
                          "*shared this document*",
                          "*shared an item*",
                          "*received this email because you*",
-                         "*shared a*with you*"
+                         "*shared a*with you*",
+                         "*automated *mail from google*drive*"
         )
       )
       and (