DocuSign Data Breach - DANGER Will Robinson! Read All About IT ! (1/2)

By
Real Estate Broker/Owner with Atlanta Homes ODAT Realty Call/Text 404-939-2727 Buckhead - Midtown - Westside -- and more ...
http://actvra.in/54zW

DocuSign Data Breach

DANGER Will Robinson!
 Read All About IT !   (1/2)

UPDATED: May 22, 2017

 

 

DocuSign reported a data breach that allowed malicious hackers to conduct a wide-ranging phishing campaign.

In a notice on DocuSign's website, the breach was discovered when investigating the cause of an increase in DocuSign-impersonating phishing emails.

"A malicious third party had gained temporary access to a separate, non-core system that allows us to communicate service-related announcements to users via email," the company said.

"A complete forensic analysis has confirmed that only email addresses were accessed; no names, physical addresses, passwords, social security numbers, credit card data, or other information was accessed."

According to DocuSign:

"No content [and] no customer documents sent through DocuSign's eSignature system [were] accessed; and DocuSign's core eSignature service, envelopes and customer documents and data remain secure."

The phishing emails have the following subject lines:
"Completed: [domain name] - Wire transfer for recipient-name -
Document Ready for Signature"

and

"Completed [domain name/email address] - Accounting Invoice [Number] -
Document Ready for Signature".

DocuSign recommends forwarding the malicious emails to spam@docusign.com
and then deleting the malicious emails.

 

full copy of the FRADULENT email template is posted at TechHelpList.com.

The messages contain a ".doc" file that downloads
password stealing and bank-credential stealing malware.

 

 

THINK BEFORE YOU CLICK !!!!

 

UPDATE:

DocuSign issued a new series of Follow-up information
Please see the second post of this series.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~

For continuing updates, DocuSign suggests that " If you would like to be automatically informed about the latest security updates and alerts, please follow @askdocusign (DocuSign Support) on Twitter, where we will be posting notifications when the Trust Center is updated."

Image courtesy of DocuSign report

Posted by

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Need a REALTOR(R)?
 
Let me Google multi-color logo Atlanta Real Estate ODAT that for you.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Lynn B Friedman reviews             facebook      twitter      google plus      linkedin       

                                                                                                                                   Click & Search 

             

 

close

This entry hasn't been re-blogged:

Re-Blogged By Re-Blogged At
Topic:
Real Estate Technology & Tools
Location:
Georgia Fulton County Atlanta
Groups:
Active Rain Newbies
Realtors®
Atlanta Real Estate Q&A
The Lounge at Active Rain
Technology
Tags:
docusign
malware via documents

Post a Comment
Spam prevention
Spam prevention
Show All Comments
Ambassador
3,202,202
George Souto
George Souto NMLS #65149 FHA, CHFA, VA Mortgages - Middletown, CT
Your Connecticut Mortgage Expert

Lynn that is a big concern.  I know some lenders use DocuSign, and those documents contain sensitive information.

May 16, 2017 03:18 PM #1
Ambassador
802,001
Lynn B. Friedman
Atlanta Homes ODAT Realty Call/Text 404-939-2727 Buckhead - Midtown - Westside -- and more ... - Atlanta, GA
Concierge Service for Our Atlanta Sellers & Buyers

George Souto 

SENSITIVE INFORMATION was N O T accessed.  What the *#**!!'s did was steal EMAIL ADDRESSES.

People need to be careful of requests to "click" claiming to be from DocuSign.

All the best - Lynn

 

May 16, 2017 03:22 PM #2
Rainmaker
595,342
Nancy Laswick
United Real Estate - Phoenix, AZ
Your REALTOR® For The Valley Of The Sun

Hi Lynn, All hacks are scary and when I first heard about this one my heart skipped several beats. Fortunately the hackers emails smelled a little fishy.  I received several emails from "DocuSign" saying that my documents were ready shortly before and after the hack was discovered but I didn't bite. 

May 16, 2017 04:01 PM #3
Ambassador
802,001
Lynn B. Friedman
Atlanta Homes ODAT Realty Call/Text 404-939-2727 Buckhead - Midtown - Westside -- and more ... - Atlanta, GA
Concierge Service for Our Atlanta Sellers & Buyers

Nancy Laswick 
Smart woman --- as I already knew! 
All the best - Lynn

PS -- Just posted about RANSOMWARE. L.

 

May 16, 2017 04:34 PM #4
Rainmaker
3,096,457
Dorie Dillard
Coldwell Banker United Realtors® ~ 512.346.1799 - Austin, TX
Serving Buyers & Sellers in NW Austin Real Estate

Hi Lynn B. Friedman,

I've been receiving several look alike DocuSign envelopes and we have deleted all of them. I got an email from one of my trusted lenders today:

https://www.forbes.com/sites/leemathews/2017/05/16/docusign-hack-phising-emails/#78c8024516b7

 

May 16, 2017 04:47 PM #5
Ambassador
802,001
Lynn B. Friedman
Atlanta Homes ODAT Realty Call/Text 404-939-2727 Buckhead - Midtown - Westside -- and more ... - Atlanta, GA
Concierge Service for Our Atlanta Sellers & Buyers

Dorie Dillard 
Yes, I am a BIG fan and user of DocuSign. I plan to email each of my document signers with the warnings. Thanks for coming by - Lynn 

PS Check this out also -   RANSOMWARE.

May 16, 2017 04:50 PM #6
Ambassador
2,524,435
Anna Banana Kruchten,CRS,CRB,GRI
Phoenix Property Shoppe - Phoenix, AZ
Arizona's Top Banana of Real Estate!

Lynn I got a couple of the docusigns and I KNEW they were spam.  Good idea to get this word out

May 16, 2017 05:03 PM #7
Ambassador
802,001
Lynn B. Friedman
Atlanta Homes ODAT Realty Call/Text 404-939-2727 Buckhead - Midtown - Westside -- and more ... - Atlanta, GA
Concierge Service for Our Atlanta Sellers & Buyers

Anna Banana Kruchten, CRS 
Interestingly, I did too. I knew I wasn't expecting any so didn't click - HABIT. Will say however, I didn't think to report it to DocuSign.

Thought of you and our eSign/DocuSign conversation a few months back as I was writing the post! DocuSign must be very embarrassed!
All the best - Lynn

May 16, 2017 09:15 PM #8
Rainmaker
2,391,147
Endre Barath, Jr.
Berkshire Hathaway HomeServices - Beverly Hills, CA
Realtor - Los Angeles Home Sales 310.486.1002

Yes it was all about  getting the email addresses and in turn every DocuSign email owner got  at least 8 or 10 bogus DocuSign messages but it was pretty obvious that it was not from DocuSign so only people that have their head in the sand would open them...Endre

May 16, 2017 11:01 PM #9
Rainmaker
3,600,584
Gita Bantwal
RE/MAX Centre Realtors - Warwick, PA
REALTOR,ABR,CRS,SRES,GRI - Bucks County & Philadel

Thank you for the information. I was not aware of it

May 17, 2017 02:51 AM #10
Post a Comment
Spam prevention
Show All Comments

What's the reason you're reporting this blog entry?

Are you sure you want to report this blog entry as spam?

Ambassador
802,001

Lynn B. Friedman

Concierge Service for Our Atlanta Sellers & Buyers
Selling? Buying? Contact us now and LET'S TEAM UP for success!
*
*
*
*
Spam prevention

Additional Information