One in five DocuSign spoofs targeting businesses found to be impersonations of regulatory agencies
SlashNext Email Security researchers report that From November 8 through November 14, there has been a 98% increase observed in the use of DocuSign phishing URLs compared to all of September and October.
In a Nov. 18 blog post, SlashNext Email Security said that what makes the sudden surge most concerning is that 20% of the attacks were impersonations of government organizations.
The researchers said these attacks were targeting businesses that regularly interact with state, municipal and licensing authorities in the United States.
SlashNext said they have seen impersonations of the following agencies: Department of Health and Human Services, the Maryland Department of Transportation, the State of North Carolina’s Electronic Vendor portal, the city of Milwaukee, the city of Charlotte, the city of Houston, and the North Carolina Licensing Board for General Contractors.
“This sophisticated campaign is particularly dangerous because it exploits the trusted relationship between businesses and their regulatory bodies,” wrote the SlashNext researchers.
/cdn.vox-cdn.com/uploads/chorus_asset/file/25744778/01_Stream_your_own_game_541703eb415794d44f28.jpg)
