The original post: /r/cybersecurity by /u/arqf_ on 2024-11-04 20:42:15.

Threat actors are abusing DocuSign’s Envelopes API to create and mass-distribute fake invoices that appear genuine, impersonating well-known brands like Norton and PayPal.