McMaster IT Notice: Beware DocuSign Phishing Attempts
If you use DocuSign for work or personal reasons, please note that McMaster IT Security has been observing instances of phishing attacks from spoofed emails purporting to be from DocuSign – a widely used eSignature and Digital Transaction Management tool. These attacks involve emails that appear to come from a legitimate McMaster source and ask recipients to complete a task in a given timeline.
Here is a sample of a spoofing message:
Please be advised that these emails are NOT from McMaster University and are part of a phishing scam. We ask that you do NOT click on any links or attachments in these emails.
Please share this information with any DocuSign users in your area or department and ask them to report any suspicious emails to is-spam@mcmaster.ca, then delete the message.
To help protect yourself against these types of attacks, we recommend that you familiarize yourself with the signs of phishing and spam by visiting the McMaster IT Security Webpage. Additionally, you can find information and FAQs about DocuSign on the McMaster UTS Website.
Thank you for your co-operation in helping keep McMaster cybersecure.
Service Updates