🚨 Top companies and services faked in #phishing attacks on businesses and individuals

We closely monitor all ongoing phishing campaigns and activities.

📈 Based on our data, we’ve listed brands most often faked by #threatactors in #phish lures. Check out examples analyzed in #ANYRUN’s Sandbox 👇

87% of all cases in corporate phishing mimic #Microsoft and #Google

1️⃣ Microsoft: https://app.any.run/browses/9c624461-0720-40d1-b27b-b3b3486369b4?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525
2️⃣ Google: https://app.any.run/tasks/5b67bd7f-531b-4be1-ba24-607178edc4c7?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525

Popular consumer and social media platforms dominate in personal phishing scams. Despite being targeted at individuals, these attacks can still result in business security breaches (e.g., due to the victim using the same leaked password across their personal and corporate accounts)

3️⃣ Amazon: https://app.any.run/tasks/a16c0ccf-420a-44e0-ad1a-2a8d79af10e1/?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525
4️⃣ Facebook: https://app.any.run/tasks/44bf6c3a-d530-4574-a275-bda134fa6fd3?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525

#Adobe and #DocuSign are used in attacks that begin with an email about a supposedly secure document. The users then mostly get redirected to a fake authentication page from Microsoft or Google, which once again may lead to corporate security incidents

5️⃣ Adobe: https://app.any.run/tasks/343224ab-ecaa-407c-a865-35500c1192f3?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525
6️⃣ LinkedIn: https://app.any.run/tasks/05639799-6f5e-4d5d-a350-90c95f50e89f?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525
7️⃣ Telegram: https://app.any.run/browses/f704b5e8-3ea8-46da-acd4-cea7f9dd3287?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525
8️⃣ DocuSign: https://app.any.run/tasks/4a3e2526-5d96-445b-9776-f64eeddf8cfa?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525
9️⃣ Booking: https://app.any.run/tasks/61d36f83-7534-4841-8b0a-52109b3b711e?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525
🔟 PayPal: https://app.any.run/tasks/9227bca6-d5f1-4fa3-bd73-23c1b5c4157a?utm_source=mastodon&utm_medium=post&utm_campaign=top_corporate_phishing&utm_content=linktoservice&utm_term=220525

Always analyze suspicious emails and URLs with ANYRUN’s Interactive Sandbox first to identify threats before they breach your security 🛡️

#Phishing #spam pretending to be from #Docusign—but the idiots then sign it from #Paypal and have a Paypal copyright notice.

Documenso: DocuSign Alternative
Ein neuer adminForge Service kann ab sofort genutzt werden.

Documenso: DocuSign Alternative
Mit Documenso habt ihr eine quelloffene Alternative zu DocuSign. Mit diesem Dienst kannst du PDF Dokumente von Personen unterzeichnen lassen.

https://sign.adminforge.de

Features:

Registrierung nur mit E-Mail und Passwort
An
https://adminforge.de/tools/documenso-docusign-alternative/
#adminforge #documenso #docusign #foss #OpenSource #selfhosted

🔒 Für uns hat der Schutz eurer Daten die oberste Priorität. Unsere Produkte sind vollständig DSGVO-konform, zertifiziert nach ISO 27001 und werden zu 100 % in Deutschland entwickelt und gehostet. Erfahrt jetzt mehr unter https://lambda9.de/produkte 🙌

#Europa #MadeInEurope #BuyEuropean #GDPR #DocuSign

just got one, so I'm wondering:

anyone in #infosec or #security seen a #scam where they send you a real #docusign link? my link was already invalid by the time I tried it, but I'm wondering what the angle is there

In case you pay for #Docusign, if you go through the cancellation workflow they'll give you 50% off your next renewal.

In other news I'm self-hosting Documenso now.

Cyberkriminelle nutzen aktuell gefälschte OAuth-Anwendungen, die sich als bekannte Dienste wie Adobe Acrobat, Adobe Drive oder DocuSign ausgeben. Ziel dieser Angriffe ist es, sich Zugriff auf Microsoft-365-Konten zu erschleichen. Im Beitrag erfährst du auch, wie du dich vor solchen Angriffen schützen kannst.

https://teufelswerk.net/achtung-vor-boesartigen-adobe-und-docusign-oauth-apps-so-schuetzt-du-dein-microsoft-365-konto/

#phishing #scam #cybersecurity #OAuth #Adobe #DocuSign #microsoft365 #office365

Malicious #Adobe, #DocuSign #OAuth apps target #Microsoft365 accounts

https://www.bleepingcomputer.com/news/security/malicious-adobe-docusign-oauth-apps-target-microsoft-365-accounts/

#cybersecurity #Microsoft

DocuSign shares jump 18% as Q4 earnings beat expectations, driven by strong subscription revenue growth and AI-based content solution prospects
#YonhapInfomax #DocuSign #Q4Earnings #SubscriptionRevenue #AIContent #StockSurge #Economics #FinancialMarkets #Banking #Securities #Bonds #StockMarket
https://en.infomaxai.com/news/articleView.html?idxno=54276

DocuSign reports Q4 revenue of $776.3 million, up 9% year-on-year, beating market expectations; shares surge 8.45% in after-hours trading despite lower next-quarter guidance
#YonhapInfomax #DocuSign #Q4Earnings #RevenueGrowth #MarketExpectations #AfterHoursTrading #Economics #FinancialMarkets #Banking #Securities #Bonds #StockMarket
https://en.infomaxai.com/news/articleView.html?idxno=54174

Because Today's #SpammerDuJour is orderupdates@arsadmerie.biz or maybe orderupdates1@arsadmerie.biz. Definitely someone able to convince the imbeciles at Microsoft they are a customer in that domain...

They hit my ASF contributor address TWICE today with entirely different bogus document signature requests: one from #Docusign and one from a notionally similar parasite called #Yousign.

They just make it so obvious...

Nearly unstoppable phishing sites are tricking victims into giving access to their corporate networks.

#cybersecurity #DocuSign #network #datasecurity

https://cnews.link/docusign-email-phishing-scam-1/

Maybe I shit posted IRL in a mixed audience or they came to their senses. But during a POV the other week I tried to abuse trial DocuSign and noticed they locked out the Branding section I previously used for redirects.

#docusign #phishing #infosec #lots

@kly YES! i regularly report to my clients that their all important #docusign or collaboration document link email rightly ended up in SPAM.
any company should have all their trusted services under their domain and their domain only. i do not think #saas is a good idea for most cases, but it should always possible to put it under your domain.
#infosec

“Environ 20 000 utilisateurs à travers différentes entreprises européennes” : campagne de #phishing en Europe qui compromettait les PDFs sous #Docusign et les comptes Microsoft #Azure !

https://blog.sosordi.net/2024/12/environ-20-000-utilisateurs-a-travers-differentes-entreprises-europeennes-campagne-de-phishing-en-europe-qui-compromettait-les-pdfs-sous-docusign-et-les-comptes-microsoft-azure.html

#securite #data #vieprivee #phishing #Internet

#docusign pricing, plan and billing is terrible and the dark patterns are really sad to see :(

Blimey, pretty much every email address I own has been hit by a #docusign #spam email. All of them made it through the filters!

Getting a lot of spam purporting to be from #DocuSign

Anyone else experiencing #microsoft calling most #docusign email phishing this week?