ALERT: 4/16/2019 @ 8:30 AM Pacific Time - New Phishing Campaign Observed Today
DocuSign has observed a new phishing campaign that began around 8:30 on the morning of April 16th (Pacific Time) and is coming in at a very quick rate. The email purports to come from "DocuSign Electronic Signature and Invoice Service” or similar using the email address "email@example.com". The emails have the subject line similar to:
"You received notification from DocuSign Service“
These emails contain links to a malicious Microsoft Office document which, if run, will download malware to your computer. These emails are not sent from DocuSign. Do not click on the link in these emails, instead please forward them to firstname.lastname@example.org and then delete the email immediately.
For more information on how to spot phishing please see our Combating Phishing white paper (3.3 MB)