DocuSign Data Breach Leads to Phishing Attack

May 18, 2017, Written By Bill Hardekopf

DocuSign, a company that provides electronic signature services, has admitted its customer email addresses were accessed in a recent data breach. Users discovered the data breach when they started receiving malicious phishing emails from an unauthorized third party.

The message, which posed as a legitimate request for information from DocuSign, asked recipients to download a Microsoft Word document. If the recipient clicked the link, malware was downloaded onto their computer. If a customer receives one of these malicious emails, DocuSign is urging them to forward the email to [email protected] and then delete it.

DocuSign said a “malicious third party” had hacked a “non-core system” the company uses to send out service announcement emails, which is how cybercriminals were able to target DocuSign users.

The company said in a statement that only email addresses were exposed in the breach and they had since secured the server .

“No names, physical addresses, passwords, social security numbers, credit card data or other information was accessed,” the company said. “DocuSign’s core e-signature service, envelopes and customer documents and data remain secure.”

If a customer is unsure whether an email actually originated from DocuSign, they can access their documents by visiting the company’s website and entering the security code included on every legitimate DocuSign email. The company also said they would never ask customers to download a file via email.



The information contained within this article was accurate as of May 18, 2017. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.