A sophisticated cybercrime campaign has targeted at a large, publicly traded payment solution based in North America has used DocuSign and a third-party e-mail domain to monitor past email security measures, the researchers said.
The campaign distributes seemingly innocent emails to the company, with the intention of stealing Microsoft login details, Armorblox researchers have revealed.
Phishing spam emails have effectively avoided common email security practices because they come from the TermBrokersInsurance domain.
Read More: https://threatpost.com/cyberattackers-docusign-steal-microsoft-outlook-logins/178613/
