GitHub

tanimotk/docusign-nda-poc

Authentication with Docusign via Authorization Code Grant. When the token expires, the user is asked to re-authenticate. The refresh token is not used. Authentication with Docusign via JSON Web Token ...
Forbes

DocuSign Exploit Lets Hackers Send Fake Invoices

DocuSign, Inc. is an American company providing document management services. In a recent cyber threat development discovered by the Wallarm security firm, attackers are exploiting DocuSign’s API ...
GitHub

docusign_api_best_practices.txt

This guide provides information about the best practices to use when making calls to the DocuSign SOAP and REST APIs. SOAP and REST API Best Practices To maintain reliability and stability within our ...
Bleeping Computer

DocuSign's Envelopes API abused to send realistic fake invoices

Threat actors are abusing DocuSign's Envelopes API to create and mass-distribute fake invoices that appear genuine, impersonating well-known brands like Norton and PayPal. Using a legitimate service, ...
Dark Reading

Docusign API Abused in Widescale, Novel Invoice Attack

Cybercriminals are abusing a Docusign API in a widescale, innovative phishing campaign to send fake invoices to corporate users that appear authentic and likely would not trigger typical security ...
Infosecurity-magazine.com

Cybercriminals Exploit DocuSign APIs to Send Fake Invoices

Cybersecurity researchers have identified a growing trend where cybercriminals exploit DocuSign APIs to send convincing fake invoices. Unlike traditional phishing scams that rely on spoofed emails ...