Malicious actors are exploiting DocuSign to send fake invoices
Briefly

from Securitymagazine2 months ago
What stands out in this scheme is not just the abuse of the API itself, but the specific way attackers are leveraging DocuSign's API capabilities to send requests that blend seamlessly with typical business operations. By using paid accounts, attackers gain API access that enables the customization and automation of these fraudulent requests at scale, replicating legitimate workflows without tripping typical security triggers.
Securitymagazinehttps://www.securitymagazine.com/articles/101179-malicious-actors-are-exploiting-docusign-to-send-fake-invoices
The rise in DocuSign API exploitation represents a broader shift in multichannel attack sophistication. Cybercriminals are moving beyond traditional email phishing to leverage trusted platforms and automation for mass-scale fraud.
Securitymagazinehttps://www.securitymagazine.com/articles/101179-malicious-actors-are-exploiting-docusign-to-send-fake-invoices
Read at Securitymagazine
#cybersecurity #api-exploitation #phishing #docusign #fraud
[
|
]