ADVERTISEMENT

Hackers abuse Mimecast links to push out 40,000 fake SharePoint and DocuSign emails

A major phishing campaign is exploiting a trusted security feature to deliver thousands of fake SharePoint and e-sig notifications that appear authentic.

phishing lure

Image by wk1003mike | Shutterstock

Ann-Marie Corvin
Ann-Marie Corvin Senior Journalist
Dec 10, 2025 Updated: 10 December 2025 2 min read
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News
Add us as your Preferred Source on Google.
ADVERTISEMENT

“Smaller but stealthier” DocuSign scam

Who’s at risk from fake e-sign phishing?

“The attacker campaign described by Check Point exploited legitimate URL redirect services to obfuscate malicious links, not a Mimecast vulnerability. Attackers abused trusted infrastructure – including Mimecast’s URL rewriting service – to mask the true destination of phishing URLs. This is a common tactic where criminals leverage any recognized domain to evade detection.”
Mimecast

ADVERTISEMENT