Avanan researchers recently published a report in support of cyber security awareness month that follows several Docusign phishing campaigns. According to Avanan researchers, recent impersonation phishing attempts have switched focus from targeting or impersonating C-Suite executives towards targeting non-executive employees. Only approximately 30% of impersonated emails targeted executives, likely due to the increased attention and protection being applied to such attempts. While attacks from prior years have utilized spoofed Docusign documents and links, threat actors have moved into directly utilizing Docusign accounts in order to distribute malware via malicious documents.
By Anthony Zampino Introduction Leading up to the most recent Russian invasion of Ukraine in