DocuSign, the owner of the digital signature service eSignature, said that a database of customer emails were stolen and used in a phishing campaign. The phishing emails, which were designed to
look like they came from DocuSign, had subject lines like, “Completed: [domain name] – Wire transfer for recipient-name Document Ready for Signature” or “Completed [domain
name/email address] – Accounting Invoice [Number] Document Ready for Signature.” Recipients who opened document attachments were served malware. The company added that personal information
was not accessed.
Read the whole story at TechCrunch »