DocuSign and OneLogin Become Data Breaches Victims

Two sites with your information hit with massive breaches.

After all, DocuSign could have potentially lost names, addresses, Social Security numbers, payment credentials, and other sensitive information. Instead, the hackers only seem to have gotten some email addresses.

Make that an estimated one hundred million email addresses so far.

How? And more importantly, why? The how part is simple, DocuSign is a digital document signing platform so they rely on email addresses to verify user information. The why part is also simple, even if it doesn’t seem important on the surface.

Whoever compromised the email addresses from DocuSign’s database now knows these are most likely “genuine” email addresses, since the users were electronically signing digital documents. It won’t take long before the hackers can use the email addresses for sending out phishing attacks, or sell the set of email addresses to spammers. Either way, it’s all too easy to connect the dots to existing online information about the email owners and then send convincing emails to the potential victims.

Whether it happened in this breach or another similar event, if your email address is now “out there” it’s necessary to be on the lookout for phony emails that masquerade as important notifications. It’s also a good idea to change your password—something that many techxperts recommend doing on a regular basis for circumstances just like this one—in case the hackers are able to piece together a lot of their victims’ personal information. If they do manage to hack into your email account and change your password, there’s a very real chance they can then change the passwords on practically all of your online accounts just by clicking “forgot my password” on each website.

Read next: I Received a Breach Notification Letter:  What Do I Do Now? 

Given that DocuSign’s function was to enable electronic signatures for business purposes, there’s a real threat of workplace-related scams and fraud. Last year, the cybersecurity industry noted a sharp increase in both successful ransomware attacks and “spearphishing” against companies of every size and industry, so it’s very important that businesses ensure their employees are fully trained on computer use best practices. It’s also a good idea to host routine tech training with a specific focus on avoiding cybercrimes that originate via email.

Another breach that occurred around the same time affected OneLogin, and this one is a little more alarming.

OneLogin, as the name implies, is a one-step tool that allows its users to log into their accounts with a highly secure password, and from there access their other accounts. The breach affected consumer data, including the ability for the hackers to decrypt information that had previously been encrypted.

Just like the DocuSign breach, though, OneLogin’s customers include more than 2,000 different businesses; that means even if the accounts are re-secured with new passwords, there’s a good chance that hackers gained access to employee or customer records. Companies and individuals alike, whose accounts may have been compromised, need to be extra-vigilant about their internet activity.

Contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. For on-the-go assistance, check out the free ID Theft Help App from ITRC.

Read next: I Received a Breach Notification Letter:  What Do I Do Now? 

Pin It

Article Archives



ITRC Sponsors and Supporters 





Go to top


The TMI Weekly

Breaches here, identity theft there and invasions of privacy everywhere... Should you be worried and, if so, how can you protect yourself? Sign up now to receive The TMI Weekly and get the latest hot topics in identity theft, data breaches and privacy and helpful information on how to protect your information.