According to security researchers at Wallarm, “Unlike traditional phishing scams that rely on deceptively crafted emails and malicious links, these incidents use genuine DocuSign accounts and ...
I didn’t see much visibility on this DocuSign hack. This is a situation where the product features were not vetted to ...
Attackers are targeting the DocuSign APIs to generate large amounts of fake invoices, which often skirt automated security ...
The malicious Excel document is designed to exploit a known remote code execution flaw in Office ( CVE-2017-0199, CVSS score: ...
Since the invoices are sent directly via DocuSign, they appear legitimate to email services and bypass spam or phishing ...
"An attacker creates a legitimate, paid DocuSign account that allows them to change templates and use the API directly. The ...
By leveraging legitimate DocuSign accounts and API access, threat actors are sending carefully crafted fake invoices directly ...
Cybercriminals are abusing DocuSign APIs to send bogus email messages that bypass protections such as spam and phishing filters.
Cybercriminals are exploiting DocuSign’s APIs to send highly authentic-looking fake invoices, while DocuSign’s forums have reported a rise in such ...
Threat actors are abusing DocuSign's Envelopes API to create and mass-distribute fake invoices that appear genuine, ...
Cybercriminals are exploiting DocuSign APIs to send fake invoices, bypassing security filters and mimicking well-known brands ...