Threat actors are abusing DocuSign's Envelopes API to create and mass-distribute fake invoices that appear genuine, impersonating well-known brands like Norton and PayPal.

DocuSign says it has implemented additional safeguards Cybercriminals are abusing DocuSign’s Envelopes API to trick businesses into signing fake invoices, which are later used to steal money ...

Business email compromise scammers are trying to up their success rate by using a DocuSign API.… The Envelope: create API is ...

PayPal scammers adopt Docusign API to con customers. PayPal scammers are using an old Docusign trick to enhance the trustworthiness of their phishing emails. 6 05 March 2025 Be the first to comment.

By accessing DocuSign’s APIs, particularly the Envelopes: create API, cybercriminals can scale operations quickly and target multiple organizations at once. API Exploitation and Security Measures.

Meanwhile, DocuSign reported that growth in its developer programs continues to surge, citing 300 percent growth of API transaction volume from new customers year on year.

It’s also rebranding: The S in DocuSign will now be lowercase in its new logo, a symbolic gesture. This is more than just a product launch for Docusign. The company views it as an entirely new ...

DocuSign’s new eSignature REST API standard is built to be open and extensible, and was developed in collaboration with a number of the world’s leading cloud-based companies, including Appirio ...

Cybercriminals are abusing DocuSign’s Envelopes API to trick businesses into signing fake invoices, which are later used to steal money from the victims.