diff --git a/rules/windows/pipe_created/sysmon_mal_namedpipes.yml b/rules/windows/pipe_created/sysmon_mal_namedpipes.yml
index f4dd7dc8..e425bf51 100644
--- a/rules/windows/pipe_created/sysmon_mal_namedpipes.yml
+++ b/rules/windows/pipe_created/sysmon_mal_namedpipes.yml
@@ -5,7 +5,7 @@ description: Detects the creation of a named pipe used by known APT malware
 references:
     - Various sources
 date: 2017/11/06
-author: Florian Roth
+author: Florian Roth, blueteam0ps
 logsource:
    product: windows
    category: pipe_created