MRosenquist on BULB: Fraudsters Abuse DocuSign API for Legit-Looking Invoices! Attackers create a legitimate DocuSign account that allows them to change templates and use the API directly. They employ a special template that masquerades as well-known brands to send the billing invoice. Because the fraudulent invoice is directly sent from the DocuSign platform, it appears legitimate and won’t be stopped by email filters. The process can be automated on a massive scale, spraying large numbers of unsuspecting victims.

•

12 Nov 2024

Fraudsters Abuse DocuSign API for Legit-Looking Invoices!
Attackers create a legitimate DocuSign account that allows them to change templates and use the API directly. They employ a special template that masquerades as well-known brands to send the billing invoice. Because the fraudulent invoice is directly sent from the DocuSign platform, it appears legitimate and won’t be stopped by email filters.

The process can be automated on a massive scale, spraying large numbers of unsuspecting victims.

Get fast shipping, movies & more with Amazon Prime

Start free trial