Scammers are targeting the UAB community with emails pretending to have links to DocuSign documents. 

Most likely, the links would take you to a site attempting to steal your credentials.

If you are not expecting a DocuSign document, and you don’t know the sender, report the email to AskIT using the Outlook phish reporting button or by forwarding to phishing@uab.edu.  As a reminder, UAB’s official e-signature tool is Adobe Sign.

Notice in the example below, the email says “control team” at the top as the sender, but if you look down in the body of the message you see the actual email address.

More tips to spot a phish:

• Check the sender’s email address to see if it is legitimate.
• Look for typos and misspelled words.
• Be wary of messages claiming a sense of urgency.
• Hover over links to make sure the URL matches the text.
• Even if the sender is from UAB, they could have been hacked. If an email requests you to log in to an unfamiliar site or give up your credentials, be suspicious.