This email promotion is a sample of a phishing attack that is more targeted than a typical attack but not as focused as a spear-phishing attack. It is meant to look authentic, official and important. Good attackers would research an organization and send this type of attack to people that would normally receive documents to review.

1. The first thing to ask yourself about this email is, "Should I be getting this type of email in my inbox?" If your job doesn't normally require that your review and sign documents using a third party service like DocuSign, there is a good chance that it is a phish.

2. Again, check the domain name for DocuSign. DocuSign's correct domain name is docusign.com

3. As with the other emails, the links in this email all direct to dontclickthis.knowbe4.com . This is an easy check you can make by hovering over links in the email.

docusign