Update 3/22/2018 @ 10 AM Pacific Time - New Phishing Campaign Observed Today
March 22, 2018
DocuSign has observed a new phishing campaign that began the morning of March 22nd, 2018 (Pacific Time). The email purports to come from DocuSign using the email addresses email@example.com and firstname.lastname@example.org. The emails all have the subject:
"You have received a secure document"
These emails contain a malicious Word document as an attachment, 9S659EHDCSI72649DS.doc.
These emails are not sent from DocuSign. Do not open the attachment in these emails, instead please forward them to email@example.com and then delete the email immediately.
For more information on how to spot phishing please see our Combating Phishing white paper (3.3 MB)