A new report reveals that malicious actors are exploiting APIs in DocuSign to send fake invoices. These invoices appear authentic and leverage legitimate DocuSign accounts to impersonate reputable companies, making this campaign stand apart from other phishing attempts.

Source: Security Magazine