Phishing email not detected. Fake DocuSign pdf

Discussion in 'ESET Endpoint Products' started by swifty123, Jun 5, 2013.

Thread Status:
Not open for further replies.
  1. swifty123

    swifty123 Registered Member

    Joined:
    Jun 5, 2013
    Posts:
    2
    Location:
    Australia
    Hi everyone,

    This email subtitled "Completed: Please DocuSign this document : Confidential Message - Employers Only..pdf" is hitting multiple email addresses it our network at the moment.

    http://trust.docusign.com/updates-and-alerts advised of the issue yesterday.

    My question being, should ESET be able to work out that its a phishing email since attached file was an zipped file with an exe entension.
     
  2. clyde123

    clyde123 Registered Member

    Joined:
    Apr 11, 2008
    Posts:
    69
    Location:
    Glasgow
    I found this in my Eset Quarantine this morning.
    It might be that you were one of the first to get hit, before the Eset software recognised it.
     
  3. swifty123

    swifty123 Registered Member

    Joined:
    Jun 5, 2013
    Posts:
    2
    Location:
    Australia
    Fair enough. We did get hit early. Just thought that an exe masquerading as a pdf in a zip would have been an obvious sign that it should be flagged as malicious.
     
  4. agoretsky

    agoretsky Eset Staff Account

    Joined:
    Apr 4, 2006
    Posts:
    4,032
    Location:
    California
    Hello,

    Did you submit a copy of the email and its malicious attachment to the virus lab?

    Regards,

    Aryeh Goretsky
     
Thread Status:
Not open for further replies.