User profile for user: sffilmstagemusic
sffilmstagemusic Author
User level: Level 1
10 points

Docusign spearphishing attack: Thorough malware scan and tracking concerns

Good Morning: It finally happened--a spearphishing attack fooled me. Yesterday, received an email pretending to come Docusign stating that Joe Fakename (not his real name) had a document for me to sign. Have done a lot of business with Joe Fakename over the past decade, therefore clicked the Review Document link and got a Page Not Found error message on the "Docusign" website. Clicked on the Open in Scribe Desktop button and got a "Safari cannot open the page because the address is invalid" message.


Went back to the original email and clicked on the Alternate Signing Method link. That led to another error message. Wrote to Joe Fakename to report this and he wrote that he had not sent the email and more than 20 of his contacts had received the same email.


Oddly enough, the phishing email seems to have taken me to the legit Docusign website! Deleted all of the cookies, browsing history, et cetera. Nothing has gotten downloaded to my computer, gave the scammers no information except my email--which they already had--but now they know it's real. Nothing seems to have been installed, but sometimes I like paranoia.


Two questions:

  1. What software do you recommend for a *thorough* scan of malware, trackers, password and login info thieves, et cetera?
  2. Can the phishers track online activity without sneaking anything onto my desktop?


TIA,

Vonn



[Edited by Moderator]

Original Title: Docusign Spearphishing

iMac 27″, macOS 15.5

Posted on Jul 16, 2025 10:05 AM

Reply
7 replies
User profile for user: leroydouglas
leroydouglas
Community+ 2025
User level: Level 10
198,810 points

Jul 16, 2025 3:48 PM in response to sffilmstagemusic

sffilmstagemusic wrote:

Had in mind recommendations for known utilities from the likes of Intego, Macafee, et alia--not any hacker recommendations.


Third party AntiVirus is not recommended— it typically does nothing but add issues to the macOS and competes directly with Apple’s own built in security:


macOS antivirus - Protecting against malware in macOS - Apple Support


macOS - Security - Apple  macOS - Security - Apple


Apple Platform Security - Apple Apple Platform Security - Apple Support


Reply
User profile for user: IdrisSeabright
IdrisSeabright
User level: Level 10
186,245 points

Jul 16, 2025 11:32 AM in response to sffilmstagemusic

sffilmstagemusic wrote:

Good Morning: Thanks for replying, etresoft. Had in mind recommendations for known utilities from the likes of Intego, Macafee, et alia--not any hacker recommendations. As for tracking online activity, was really concerned about theft of login information, passwords, et cetera.

I think you'll find that none (or pretty close to none) of the higher level users here recommend any of those "utilities."


Start by reading here:


Effective defenses against malware and ot… - Apple Community


Reply
User profile for user: etresoft
etresoft
User level: Level 9
56,308 points

Jul 16, 2025 10:38 AM in response to sffilmstagemusic

sffilmstagemusic wrote:

What software do you recommend for a *thorough* scan of malware, trackers, password and login info thieves, et cetera?

So you want to reward the hackers by installing their scamware on your computer?


Had there been any malware downloaded or any install attempted, the operating system would have already blocked it.


What you're asking is literally the raison d'être of these scams - to get you to bypass Apple system security and install backdoors, spywares, trackers, etc. onto your computer. These scams are extremely effective at doing just that.

2. Can the phishers track online activity without sneaking anything onto my desktop?

Absolutely everything you do online is tracked. Your desktop is one of the few places that they can't track you. But that's assuming you haven't installed any tracking software, which I'm absolutely certain that you have and that you use almost constantly. If you want privacy, use the built-in Apple software. If you want to be tracked, use Google, Facebook, and other popular free apps.

Reply
User profile for user: sffilmstagemusic
sffilmstagemusic Author
User level: Level 1
10 points

Jul 16, 2025 11:07 AM in response to leroydouglas

Good Morning: Thanks, leroydouglas, for the link. It feels even odder than before that the scammers wanted *nothing* from me. Nothing except the knowledge that my email address was active and in use. Hope they don't use it against others. In 2000, started receiving hate emails from strangers accusing me of attempted scams. Turns out that a Christian company with which I had done business stored their data with another Christian company for safekeeping. Someone at that other Christian company had downloaded some naughty pictures which contained malware which stole all of the first Christian company's data--including my old email address, which those scammers used to send emails under my name. Sigh. Ain't enough for us to be careful--everyone else has to be careful, too.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Docusign spearphishing attack: Thorough malware scan and tracking concerns

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up