Fraud Alert: Watch out for Fake Invoice Phishing Scams
09/01/2025
We're seeing an increase in sophisticated phishing scams that involve both internal and external activity. These scams use the platform itself in combination with communication or actions that take place outside our system. This hybrid method uses an external email forwarding service to send malicious envelopes to large lists of recipients, making the emails appear to come directly from Docusign.
A common tactic is a fake invoice from a well-known company like Norton, PayPal, or Geek Squad. The scammer sends a fraudulent document that looks like it's from a legitimate source and asks you to call a phone number to resolve an issue. The goal is to trick you into giving away your bank or credit card information. Sometimes the email will even say the document has already been signed to pressure you into acting quickly.
Here are some examples of subject lines these scams might use:
Order completed successfully
Completed: Transaction Details 423
Purchase has been completed @ Sep 04, 2025
Security Notice: Refund Hold Needs Immediate Action with Your Authorization
Review needed: recent Primary account activity 💯 with Docusign: AH06dq76TXhc28Gw
What should I do if I receive one of these?
Do not click on any links in the email or attachments.
Do not call the phone number in the email.
Do not share any personal or financial information.
Report the suspicious email immediately through our Report Abuse feature or directly through our online web portal i-Sight.