ALERT:9/14/2017 @ 11:00 AM Pacific Time – New Phishing Campaign Observed Today

DocuSign has observed a new phishing campaign that began the morning of September 14th targeting individuals in the APAC region.

The email comes from "Stephanie Riches via DocuSign” (note, this name is subject to change) using the email address [email protected] (note the “R”). The email has the subject “Please DocuSign: Shareholder.pdf” and it contains a link to a zip file which in turn contains a malicious javascript file. This email is not sent from DocuSign. Do not click the link in this email, instead please forward it to [email protected] and then delete the email immediately.

For more information on how to spot phishing please see our Combating Phishing white paper (3.3 MB).