diff --git a/detection-rules/body_generic_job_scam.yml b/detection-rules/body_generic_job_scam.yml
deleted file mode 100644
index 6afc91a64b4..00000000000
--- a/detection-rules/body_generic_job_scam.yml
+++ /dev/null
@@ -1,70 +0,0 @@
-name: "Body: Generic Job Scam attempt to Undisclosed Receipients"
-description: |
-  Detects potential generic employment-related scams by analyzing text within the email body.
-type: "rule"
-severity: "low"
-source: |
-  type.inbound
-
-  // undisclosed recipients
-  and any([recipients.to, recipients.bcc, recipients.cc],
-          any(., .display_name =~ "Undisclosed recipients")
-  )
-
-  // mismatched sender (from) and Reply-to
-  and any(headers.reply_to,
-          length(headers.reply_to) > 0
-          and all(headers.reply_to,
-                  .email.domain.root_domain != sender.email.domain.root_domain
-          )
-  )
-
-  // generic recipient
-  and any(ml.nlu_classifier(body.current_thread.text).entities,
-          .name == "recipient" and regex.icontains(.text, "(sir|madam)")
-  )
-
-  // request made
-  and any(ml.nlu_classifier(body.current_thread.text).entities,
-          .name == "request")
-
-  // not a bec scam
-  and all(ml.nlu_classifier(body.current_thread.text).intents,
-          .name != "bec"
-  )
-
-  // negate highly trusted sender domains unless they fail DMARC authentication
-  and (
-    (
-      sender.email.domain.root_domain in $high_trust_sender_root_domains
-      and (
-        any(distinct(headers.hops, .authentication_results.dmarc is not null),
-            strings.ilike(.authentication_results.dmarc, "*fail")
-        )
-      )
-    )
-    or sender.email.domain.root_domain not in $high_trust_sender_root_domains
-  )
-  and (
-    (
-      profile.by_sender().prevalence in ("new", "outlier")
-      and not profile.by_sender().solicited
-    )
-    or (
-      profile.by_sender().any_messages_malicious_or_spam
-      and not profile.by_sender().any_false_positives
-    )
-  )
-  and not profile.by_sender().any_false_positives
-attack_types:
-  - "Job Scam"
-tactics_and_techniques:
-  - "Social engineering"
-detection_methods:
-  - "Content analysis"
-  - "Header analysis"
-  - "Natural Language Understanding"
-  - "Sender analysis"
-id: "5dac401f-d3c1-5092-aba4-58ab597c702b"
-testing_pr: 1023
-testing_sha: 9126174ff3198eed3575d8dd9d138b8e46ab082a