DocuSign Impersonation: A New Wave of Email Fraud


“Have there been any documented surges in fraudulent email campaigns masquerading as DocuSign requests? My team has observed a notable influx of such emails from various unfamiliar domains, and I’m concerned about whether this is an isolated case targeting our company or a broader trend.”


In recent times, there has been a noticeable increase in phishing campaigns that exploit the trusted name of DocuSign, a popular electronic agreement service. These fraudulent activities are not isolated incidents but part of a larger trend that has seen cybercriminals impersonate legitimate services to gain access to sensitive information.

A new phishing campaign was identified, targeting over 10,000 users across various organizations with fake DocuSign messages designed to steal login credentials. This surge in phishing attempts is a clear indication that cybercriminals are becoming more sophisticated in their methods, often using the guise of DocuSign to lend credibility to their malicious endeavors.

Modus Operandi

The attackers often spoof email addresses and use subject lines that mimic legitimate DocuSign communication. In some cases, they have even compromised legitimate DocuSign accounts or created new ones to send out phishing emails. This makes it challenging for recipients to distinguish between genuine and fraudulent messages.

DocuSign’s Response

DocuSign has been proactive in addressing these threats. They have issued alerts to inform users of new phishing campaigns, providing examples of suspicious subject lines and advising on how to report abuse. They have also published white papers on combating phishing and protecting against brand impersonation, which are valuable resources for organizations looking to safeguard their digital communications.

Preventive Measures

To combat these threats, it is crucial for companies to educate their employees on the hallmarks of phishing attempts. This includes scrutinizing the sender’s email address, being wary of unsolicited attachments, and verifying the authenticity of requests through alternative communication channels.


The increase in DocuSign-related phishing emails is a part of a broader trend of cybercriminals exploiting trusted brands to conduct fraudulent activities. Vigilance and education are key in preventing these attacks, and organizations must remain alert to protect their assets and information in the digital space.

For further information on the latest phishing threats and protective measures, DocuSign’s Trust Center and support resources offer up-to-date guidance and assistance..

Leave a Reply

Your email address will not be published. Required fields are marked *

Privacy Terms Contacts About Us