Home News Local News DocuSign phishing scams arise in city

DocuSign phishing scams arise in city


Copyright © 2021 Roswell Daily Record

While the Better Business Bureau (BBB) issued a news release regarding fraudulent emails from the technology company DocuSign in November 2017, phishing attempts have been made toward Pioneer Bank and Roswell Independent School District users.

DocuSign, a San Francisco-based company which provides electronic signature capabilities, has continued to be the site for cybercriminals to obtain data for unsuspecting users.

Google Docs and Microsoft Outlook have also been impersonated for phishing scams, which is, according to guide released by DocuSign, a technique used by hackers to trick individuals into divulging personal information, login credentials, or launching malware to steal broader sets of personal data.

The BBB states the best practice for DocuSign users is to access documents directly from their website www.docusign.com. However, those going through messages should be skeptical to vague emails, the nonprofit explains.

“It does not state who specifically the email is from or what documents need to be signed but only leads the consumer to a button that reads, ‘View New File Now,’” the BBB said. “Clicking the link will either download malicious code on your computer — or take you to a website that will try to steal your personally identifiable information from you.”

Support Local Journalism
Subscribe to the Roswell Daily Record today.

According to a report from Barracuda in late-January, the security company has experienced a high volume of activity around phishing.

“Which is to be expected, since traditional email security solutions will not catch these emails and many will ultimately reach end users without being detected,” said Asaf Cidon, vice president of email security at Barracuda. “Millions of these impersonation emails are being sent out in multiple campaigns and users need to be educated on what to look for when receiving emails.”

On a March 5 episode of “Salted Hash” on security news outlet CSO, a member from Verodin, another cybersecurity company, voiced his concern.

“Email continues to be one of the most commonly exploited conduits to compromise,” said Brian Contos, chief information security officer of Verodin. “The good and the bad about email security is that we’ve gotten much better as an industry improving email security. The bad news is, in some cases, we’ve become too comfortable and simply assume that our email security solutions are filtering out all the bad stuff. But like any filter, email security isn’t 100 percent. And as with everything in security — technology alone isn’t the answer.”

Multimedia-Crime reporter Trevier Gonzalez can be reached at 575-622-7710, ext. 301, or at breakingnews@rdrnews.com. 

Previous articleFalling to prepare for leadership
Next articleENMU-R lauds budget allocations, considers future project