Start your day with intelligence. Get The OODA Daily Pulse.
The Docusign API is being abused in a large-scale phishing campaign involving fake invoices. Cybercriminals are creating legitimate Docusign accounts and then sending out automated emails to users directly from the platform. The phishing emails appear to be documents needing signatures from well-known brands. If a victim completes the e-signatures, the malicious actors can then use it to request payments from other organizations. As the emails come directly from Docusign, they appear legitimate to users and are not caught by spam and phishing filters. The phishing attacks have an unusually high success rate. Organizations must keep a closer eye on unexpected invoices to avoid falling victim to this new phishing campaign.
Read more: https://www.darkreading.com/cloud-security/docusign-api-abused-invoice-attack