Facebook
Phishing notification – fake Docusign email

Phishing notification – fake Docusign email

Phising Emails – why they do damage

Published on: May 10, 2017

“Phishing” specifically describes the process by which a malicious person tries to find out sensitive information about you or your accounts using the a phishing email to try to get you to voluntarily provide information. They do this by creating fake websites and branding to get you to enter details online. They will try to get you to visit a malicious website via a link on that email.


DOCUSIGN AS A MASK

A new Phishing email scam has come to our attention.  Scammers have now started using Docusign as a mask to install their software on unsuspecting individuals.

phishing

Sample of a fake email

To a busy person it is easy to miss the tell-tale signs of an email scam as it is very close to an original Docusign email. Those that are on Office 365  will already have this picked up for them but other systems may not pick up that this is a scam.

Always hover over a link before clicking on it.  Make sure that the email is from who it says it is by checking out the URL.  Check where the link is taking you to without clicking, hover over it to have a look first.  A legit Docusign email will always take you to the correct url / Docusign webpage to retrieve and view documents.


FRAUDULENT EMAIL & WEBSITES

First and foremost, if you don’t recognize the sender of a DocuSign envelope and you are uncertain of the authenticity of an email, look for the unique security code at the bottom of the notification email. All DocuSign envelopes include a unique security code. If you do not see this code DO NOT click on links or open attachments within the email.

WHAT SHOULD I DO IF I RECEIVE A SUSPICIOUS EMAIL?

First and foremost, if you don’t recognize the sender of a DocuSign envelope and you are uncertain of the authenticity of an email, look for the unique security code at the bottom of the notification email. All DocuSign envelopes include a unique security code.

If you think that you have received a fraudulent email, please contact DocuSign Security immediately at spam@docusign.com.

If there is a security code…

  • Access your documents directly from www.docusign.com, click Access Documents then enter the unique security code.

If there is NO security code…

  • DO NOT click on links or open attachments within the email. This is not a valid DocuSign email and it should be sent to our security team immediately at spam@docusign.com

Docusign email

Sample of a real Docusign email

Spot fraudulent emails and web sites by checking for the following signs:

1. Fake links:

As described above, avoid fake links by accessing your documents directly from www.docusign.com using the unique security code found at the bottom of the DocuSign notification email.

Always check where a link goes before you click on it. You can hover your mouse over the link to look at the URL in your browser or email status bar (they should be hosted on docusign.com or docusign.net). A fraudulent link is dangerous and can:

  • Direct you to a fake website that tries to collect your personal data.
  • Install spyware on your system. Spyware is an application that can enable a hacker to monitor your actions and steal any login IDs, passwords, or credit card numbers you type online.
  • Cause you to download a virus that could disable your computer.
2. A fake sender’s email address:

Fake emails may include a forged email address in the “From” field. This field is easily altered. If you don’t recognize the sender of a DocuSign envelope, contact the sender to verify the authenticity of the email.

3. Attachments:

DocuSign email requests to sign a document never contain attachments of any kind. DO NOT OPEN or click on attachments within an email requesting your signature. DocuSign emails only contain PDF attachments of completed documents after all parties have signed the document. Even then, pay close attention to the attachment to ensure it is a valid PDF file. DocuSign NEVER attaches zip files or executables.

4. Generic greetings:

Many fake emails begin with a generic greeting like “Dear DocuSign Customer.” If you do not see your name in the salutation, be suspicious and do not click on any links or attachments.

5. A false sense of urgency:

Many fake emails try to deceive you with the threat that your account is in jeopardy if you don’t provide immediate updates. They may also state that unauthorized transactions have occurred on your account or that DocuSign needs to update your account information immediately.

6. Emails that appear to be websites:

Some fake emails are made to look like a website in order to get you to enter personal information. DocuSign never asks you for personal information, including login, ID, or password in email.

7. Deceptive URLs:

Check the Web address. Just because the address looks OK, don’t assume you’re on a legitimate site. Look in your browser’s URL bar for these signs that you may be on a phishing site:

  • Incorrect company name. Often the web address of a phishing site looks correct but actually contains a common misspelling of the company name or a character or symbol before or after the company name. Look for tricks such as substituting the number “1” for the letter “l” in a Web address or transposing consecutive letters of the brand (for example, rea1estate.docusign.com instead of realestate.docusign.com or www.docusing.com instead of www.docusign.com).
  • “http://” at the start of the address on DocuSign sign-in pages. A legitimate DocuSign sign-in page address starts with “https://” – the letter “s” must be included. So check the website address for any DocuSign sign-in page.
  • Browser warnings. Your browser has ways of detecting certain types of malicious sites. Always heed these browser warnings, especially when they notify that the site or certificate cannot be trusted.
8. Misspellings and bad grammar:

While no one is perfect, fake emails often contain misspellings, incorrect grammar, missing words, and gaps in logic. Mistakes like this help fraudsters avoid spam filters.

9. Unsafe sites:

The term “https” should always precede any website address where you enter personal information. The “s” stands for secure. If you don’t see “https,” you’re not in a secure web session, and you should not enter personal data.

10. Pop-up boxes:

DocuSign will never use a pop-up box in an email as pop-ups are not secure.

If you think that you have received a fraudulent email, please contact DocuSign Security immediately at spam@docusign.com

[shareaholic app=”share_buttons” id=”12025595″]


For more information, please call our
IT team on 1300 755 615.

Samsung S8 Docking station

Samsung S8 Docking station

Meet the DeX Station.

Published on: May 8, 2017

The DeX Station is compact, light weight and portable. It supports USB, HDMI and Ethernet connections, and acts as a charging station to make sure your phone can keep going as long as you do.

A full desktop at your command.

Some things are just easier on a desktop, like sending an email, bolding text or copying and pasting between apps. With Samsung DeX, you can do it with the click of a mouse or the punch of a key.

Amplify your apps.

Samsung DeX lets you get the most out of your apps by letting you use desktop functions with them, such as right-click and drag and drop. So now you can do more things with the same emails, photos and files already on your phone.



The new Surface Laptop from Microsoft

The new Surface Laptop from Microsoft

Published on: May 3, 2017

Tech specs

SoftwareWindows 10 S
Prefer to run non-Store apps? Easily switch to Windows 10 Pro for free until Dec 31, 2017.3
Introductory offer: Includes 1 year of Office 365 Personal5
Display13.5 in PixelSense Display
Resolution: 2256 x 1504 (201 PPI)
Aspect ratio 3:2
3.4 million pixels
Surface Pen1 enabled
Touch: 10-point multi-touch
Corning Gorilla Glass
Processor7th Gen Intel Core i5 or i7
Memory4GB, 8GB, or 16GB RAM
StorageSolid state drive (SSD) options: 128GB, 256GB, or 512GB4
GraphicsIntel HD 620 (i5)
Intel Iris Plus Graphics 640 (i7)
AudioCamera, video and audio
Windows Hello face sign-in camera
720p HD camera (front-facing)
Stereo microphones
Omnisonic speakers with Dolby Audio Premium
3.5mm headphone jack
PortsUSB 3.0
Headset jack
mini DisplayPort
3.5mm AV
Surface Connect Compatible with Surface Dial off-screen interaction1
WirelessWi-Fi: 802.11ac Wi-Fi wireless networking, IEEE 802.11 a/b/g/n compatible
Bluetooth: Bluetooth 4.0 LE
Battery lifeUp to 14.5 hours video playback6
SecurityTPM chip
Enterprise-grade protection with Windows Hello face sign-in
Dimensions12.13” x 8.79” x .57” (308.02 mm x 223.20 mm x 14.47 mm)
Weight2.76 lbs (1.25 kg)
ExteriorCasing: Aluminum
Colour: Platinum
Physical buttons: Volume, Power
SensorsAmbient light sensor
Warranty1-year limited hardware warranty
What’s in the boxSurface Laptop
Power Supply
Quick Start GuideSafety and warranty documents

[1] Sold separately.

[2] Cortana available in select markets; experience may vary by region and device.

[3] Streamlined for security and superior performance. Windows 10 S works exclusively with apps from the Windows Store. Some accessories and apps compatible with Windows 10 may not work, and performance may vary. Certain default settings, features, and apps cannot be changed. Easily and affordably switch to Windows 10 Pro at any time. Learn more at Microsoft.com/Windows10S.
[4] System software uses significant storage space. Available storage is subject to change based on system software updates and apps usage. 1 GB= 1 billion bytes. See Surface Storage for more details.

[5] Office applications install from the Windows Store and are currently in preview on this device. Must activate within 180 days. Offer ends 10/15/2017. Learn more about Office 365 Personal.

[6] Up to 14.5 hours of video playback. Testing conducted by Microsoft in April 2017 using Intel Core i5, 256GB, 8 GB RAM devices. Testing consisted of full battery discharge during video playback. All settings were default except: Wi-Fi was associated with a network. Battery life varies significantly with settings, usage and other factors.

 

[shareaholic app=”share_buttons” id=”12025595″]