Alerts and updates

Subscribe using the DocuSign Trust Center Alerts RSS feed URL: https://www.docusign.com/trust/alerts/feed.
Add an RSS reader extension to your browser (Chrome, Firefox), or enable via Outlook on a PC.

  • Alert: Attempted identity theft/loan fraud attempts through companies using DocuSign observed

    04/14/2021
    DocuSign was made aware of possible identity theft/loan fraud attempts through the use of legitimate Paycheck Protection Program (PPP) loan processing companies that use DocuSign services for economic stimulus programs in response to the novel Coronavirus pandemic. Potential victims may receive notification from 3rd party identity theft protection services that attempts to verify their identity through DocuSign were made. We encourage anyone who suspects they have been a victim of this type of fraud to visit the U.S. Small Business Administration’s (SBA) Report ID theft and fraud webpage for additional information.

    If you suspect you have been a victim of Paycheck Protection Program (PPP) fraud attempts through a 3rd party company using DocuSign services, report it as suspected account misuse and/or abuse using our Incident Reporting instructions.

  • Update: New CA Connect Certificate now offered in the system for testing

    04/13/2021
    Please see the DocuSign trust page at https://www.docusign.com/trust/compliance/public-certificates for further details on the new certificate availability schedule and the CA offer and force schedule dates.

  • Alert: EU21 Scheduled Maintenance - Friday, April 16, 2021

    04/12/2021
    The DocuSign CLM Technology Team will be conducting scheduled maintenance beginning Friday, April 16th from 15:00 - 19:00 CT (21:00 - 01:00 GMT, April 16-17).

    During this time customers on the EU21 instance may experience moments of brief inaccessibility to their account.

    We apologize for any inconvenience during this time.

    Please reach out to DocuSign CLM Technical Support for any questions or concerns and check back here for updates regarding the schedule.

  • ALERT: New malicious hacking tool impersonating DocuSign observed

    04/06/2021

    DocuSign has been made aware of a new malicious document builder named EtterSilent that has been used to impersonate DocuSign to deliver malware to victims. The document builder creates Microsoft Office documents containing malicious macros or attempts to exploit a known Microsoft Office vulnerability (CVE-2017-8570) to download malware onto the victim’s computer. This activity is from malicious third-party sources and is not coming from the DocuSign platform. 

    To date, the malicious documents have been observed to deliver many different malware families such as Trickbot, QBot, Bazar, IcedID and Ursnif. These types of maldocs are typically delivered to victims via phishing attacks. For more information on how to spot phishing, please see our Combating Phishing white paper.

    The following Indicators of Compromise have been seen associated with this activity:

    DESCRIPTION VALUE
    Trickbot payload 9118198afca6e2479fdbcca55a08a4408570d2186a7dd8f261f1821178deb595
    Trickbot distribution URL http://costacars.es/ico/ortodox.php
    EtterSilent maldoc 50fd4b2e51908a55f2c891fb3ffde2c3661e4324c1887e65fabfb1a93a41efb2
    IcedID payload 8e51ccc6c8d14f0365d2d597c8aaf6015238839c0dab90e419107782bf460414
    IcedID distribution URL http://188.127.254.114/44270.7082388889.dat
    EtterSilent maldoc 2baf563da8db9e2ed765fa7697025d277d06ee53424f6513671f2f6b7441387b
    QBot payload 24753d9f0d691b6d582da3e301b98f75abbdb5382bb871ee00713c5029c56d44
    Qbot distribution URL http://kfzhm28pwzrlk02bmjy.com/mrch.gif
    EtterSilent maldoc 16a0c2f741a14c423b7abe293e26f711fdb984fc52064982d874bf310c520b12
    Ursnif payload d5b05a81f377c33a2fba292002d0474b68483225aa09c97a00336fc368383d6a
    Ursnif distribution URL http://musclemodz.com/asrt3.png
    EtterSilent maldoc 267a54f074b688d591d5cfb7831f1adb443ec1441076775cb158bed0d385f712
    Bazar payload b7ce29ffbdf00771b539b28ce01d57cd5805ca3a6ca2eb1b694eed4466912286
    Bazar distribution URL http://itelsys.ma/prod/education.php
    EtterSilent maldoc 5f8e3b19cd4d25ac396cf64f6f448d88e301cf899142bdb03a28cec42eb71389
    Qbot payload 6a984d3aaffeeec32f3803489c71bfd907e2fb74dbc8eeb931c084f11293e1cc
    Qbot distribution URL http://pokojewewladyslawowie.pl/orlpzhiy/44270.5684626157.dat
    EtterSilent maldoc 3a5d67bdc42b7a9ebd1137e49a34d82c0ee99343ae32f3367137db19131c2cf4
    Trickbot payload aa40f9dd1212993f79cc23111de3a8dd5e529dd1a8ca5dceaa30fba53f6f96b4
    Trickbot distribution URL http://mineiro.ch/casrtnoar/count.php
    EtterSilent maldoc 9b1c03b0cca23a94f2d6988c66eb0d246ec2648623765e83dbf20548ac874837
    Ursnif payload 1c65c1a53f1cf5372bb35b5af5130e966b4bb7e7941cc1460f28628249ce5189
    Ursnif distribution URL http://holmesservices.mobiledevsite.co/ds/2803.gif
    EtterSilent maldoc 2a3316b69ec787ca13a3e35697bcfc4a5e37a9a3080434c56fdf17e0593e0a12

     

  • Update: New AU, CA and EU Connect Certificates now available for download

    03/29/2021
    Please see the DocuSign trust page at https://www.docusign.com/trust/compliance/public-certificates for further details on the new certificate availability and the AU, CA and EU offer and force schedule dates.

  • Update: New DEMO Connect Certificate available for download and testing

    03/23/2021
    Please see the DocuSign Trust Center page at www.docusign.com/trust/compliance/public-certificates for further details on the new certificate availability and the DEMO Offer and Force schedule.

  • Alert: DocuSign CLM April 21.3 Product Release: PROD 04/02/2021

    03/19/2021

    The DocuSign CLM and CLM.CM April 21.3 Product Release will be deployed to the EU11, EU21 Production environments on Friday, April 02, 2021 from 1:30PM - 5:30PM, U.S Central Time, and to the NA11, NA21, US11, US12 Production environments between 9:00 PM and Midnight, US Central Time. We do not anticipate any impact to platform availability or access during this time.

    Release Notes for this upcoming release can be found on the DocuSign Support Center.

    Please contact Technical Support if you have any questions.

  • Update: New DocuSign SSO certificates available for download

    03/10/2021
    Please see the DocuSign trust page at https://www.docusign.com/trust/compliance/public-certificates for further details on the new DocuSign SSO Certificate schedule dates.

  • Alert: DocuSign CLM April 2021 Product Release: UAT March 18, 2021

    03/08/2021

    The DocuSign CLM and CLM.CM April 2021 Product Release will be deployed to the UAT environment on Thursday, March 18, 2021 between 8:00 PM and 11:00 PM, US Central Time. We do not anticipate any impact to platform availability or access during this time.

    Announcements for this upcoming release can be found on the DocuSign Support Center. Please continue to check the Support Center for enhancements and fixes that will be posted prior to UAT deployment. 

    Please contact Technical Support if you have any questions.

  • [Resolved} Alert: Document Reporting Services Data Latency, March 4, 2021

    03/04/2021

    [RESOLVED Mar 5 10:05 CT] The DocuSign/SpringCM Technology team has resolved the performance degradation issue on the NA21 instance.  The issue began at 3/4/2021 8:32:24 PM UTC and ended at 3/5/2021 3:53:58 PM UTC.  A Root Cause Analysis will be posted here as soon as it's available.  

    We apologize for any inconvenience this incident has had on customers.

    [UPDATE Mar 5, 2021 09:30 CT] The DocuSign/SpringCM Technology team has isolated the performance degradation issue on the NA21 instance and is currently validating potential resolution paths.

    Please check the status of trust.springcm.com frequently for updates regarding this issue.

    [POSTED Mar 4, 2021 18:20 CT] The DocuSign/SpringCM Technology team is working to resolve a performance degradation issue on the NA21 instance. During this time, a limited number of customers on the NA21 instance may experience data related to Document Reporting appearing out of date.

    Please check the status of trust.springcm.com frequently for updates regarding this issue.

  • Alert: UAT Necessary Maintenance Wednesday, February 24, 2021

    02/23/2021

    The DocuSign CLM/SpringCM Technology Team will be conducting maintenance beginning Wednesday evening, 02/24/21 from 20:00 - Midnight CT.

    During this time the UAT instance will not be accessible as our engineers conduct this critical maintenance. 

    We apologize for the short notice and inconvenience this may cause.

    Please reach out to DocuSign CLM Technical Support for any questions or concerns and check back here for updates regarding the schedule. 

  • Alert: DocuSign CLM February 21.2 Product Release: PROD - February 26, 2021

    02/12/2021

    The Docusign CLM and CLM.CM February 21.2 Product Release will be deployed to the EU11, EU21 Production environments on Friday, February 26, 2021 from 1:30PM - 5:30PM, U.S Central Time, and to the NA11, NA21, US11, US12 Production environments between 9:00 PM and Midnight, US Central Time.

    We do not anticipate any impact to platform availability during this time.

    Release Notes for this upcoming release can be found on the DocuSign Support Center.

    Please contact Technical Support if you have any questions.

Pages