Be Wary of Emails from DocuSign; Think Before You Click

CPAs & Advisors

Print Friendly, PDF & Email
Earlier this month, DocuSign, a digital signature service, detected an increase in phishing emails sent to some of its users. The emails “spoofed” the DocuSign brand in an attempt to trick recipients into opening an attached Word document that, when clicked, installs malicious software. Also, DocuSign later confirmed that a malicious third party had gained access to one of their non-core systems used for service-related announcements. Email addresses were stolen, which may now be susceptible to phishing attacks.

If your company uses DocuSign for electronically-signed documents, we urge that if you receive an email from DocuSign, be vigilant and ensure that it is legitimate.

How can you protect yourself from an attack?

  1. Verify the hyperlink. Do not click on the link in the email. Instead, go to and enter the unique security code included at the bottom of every legitimate DocuSign email.
  2. Verify that the email address of the sender is correct and not missing a letter, or that it is not some variation of the name or domain
  3. If you are not expecting the email, contact the sender via another method (by phone or in person) to verify they sent the request to you.
  4. Watch for and delete any emails with the subject line, “Completed: [domain name] – Wire transfer for recipient-name Document Ready for Signature” and “Completed [domain name/email address] – Accounting Invoice [Number] Document Ready for Signature.”

These emails are not from DocuSign; they are sent by cybercriminals and contain a link to malware.

DocuSign has requested that any users who receive a suspicious email forward it to

Read more about the phishing attack on DocuSign.

Your security is important to us. Please call Yeo & Yeo if you have questions or need assistance.

Want To Learn More?

Connect with one of our professionals today.