Phishing.Database icon indicating copy to clipboard operation
Phishing.Database copied to clipboard
verified publisher icon mitchellkrogza

False Positive | example.com

Open FSC-Hoskinson opened this issue 1 month ago • 2 comments

What are the subjects of the false-positive (domains, URLs, or IPs)?

account.docusign.com

Why do you believe this is a false-positive?

Docusign is a well-known sight used for business. account.docusign.com is part of the logon flow that is kicked off from the logon link on the official site. I have verified this by typing in the site manually in my browser and clicking the login link.

How did you discover this false-positive(s)?

Other (Please fill out the next box)

Where did you find this false-positive if not listed above?

We use Bitwarden and it is using the Phishing.Database with its new phishing detection feature. Users started reporting that when they were trying to log into Docusign they were being blocked by Bitwarden.

Have you requested a review from other sources?

No response

Do you have a screenshot?

Image

Screenshot This screenshot shows the error

Additional Information or Context

No response

FSC-Hoskinson avatar Nov 17 '25 20:11 FSC-Hoskinson

Verification Required

@FSC-Hoskinson, thank you for submitting a false positive report! To help us verify your ownership of the affected domain(s), please complete the following steps:

  1. Set a DNS TXT record for the domain(s) listed in this issue with the following details:

    • Record Name: _phishingdb
    • Record Value: antiphish-a757de8865504d72e2efb1d42eae773c497952cd

    Your Verification ID: antiphish-a757de8865504d72e2efb1d42eae773c497952cd

  2. Wait for DNS propagation (this may take a few minutes to a few hours).

  3. Reply to this issue once the TXT record has been set.

Important Notes

  • Verification does not guarantee whitelisting. The Phishing.Database team will review your report after verifying ownership, but the decision to whitelist depends on further investigation and analysis.
  • If the record cannot be set or you need alternative methods of verification, please contact us at [email protected] - preferably from the domain's official email address.

How to Check the TXT Record ?

You can verify that the TXT record is properly set using:

Thank you for your cooperation! We will address your issue as soon as possible after verification.

The Phishing.Database Project Team.

phishing-database-bot avatar Nov 17 '25 20:11 phishing-database-bot

I do not own the domain account.docusign.com.

FSC-Hoskinson avatar Nov 17 '25 20:11 FSC-Hoskinson

Closing.

Subject(s) not found in the Phishing.Database project: account.docusign.com.

-- We appreciate your help in refining this. Please let us know if anything seems incorrect.

phishing-database-bot avatar Dec 18 '25 18:12 phishing-database-bot