Security News > 2021 > October > DocuSign phishing campaign targets low-ranking employees
Phishing actors are following a new trend of targeting non-executive employees but who still have access to valuable areas within an organization.
As reported by Avanan researchers, half of all phishing emails they analyzed in recent months impersonated non-executives, and 77% of them targeted employees on the same level.
Previously, phishing actors would impersonate CEOs and CFOs to trick company employees in targeted phishing attacks.
As the CEOs got more vigilant and security teams in large firms added more safeguards around those "Critical" accounts, phishing actors turned to lower ranking employees that can still serve as excellent entry points into corporate networks.
In the haste of daily work, it is likely that some employees will be tricked by this message and treat it as a real DocuSign request, entering their email credentials and handing them over to the phishing actors.
In August 2019, a campaign using DocuSign landing pages took it a step further by trying to trick people into entering their full credentials for a wide selection of email providers.