• Menu
  • Skip to right header navigation
  • Skip to main content
  • Skip to primary sidebar

DigiBanker

Bringing you cutting-edge new technologies and disruptive financial innovations.

  • Home
  • Pricing
  • Features
    • Overview Of Features
    • Search
    • Favorites
  • Share!
  • Log In
  • Home
  • Pricing
  • Features
    • Overview Of Features
    • Search
    • Favorites
  • Share!
  • Log In

DocuSign‑branded Apple Pay emails use urgent refunds, Cyrillic sender tricks, and security‑code links to lure victims into calls that cause credential theft

September 2, 2025 //  by Finnovate

Phishing scams are becoming more sophisticated, with a new tactic involving fake DocuSign emails that appear to confirm Apple Pay purchases. These emails often include realistic details like order IDs, charge amounts, and even a support number. However, the number connects victims to scammers, not Apple or any legitimate company. Some emails also contain a DocuSign link and a security code to make the message seem more authentic. The scam works by alarming recipients with a fake charge and urging them to call if they don’t recognize it. Once on the call, scammers pose as support agents and claim the user’s account is compromised. They may request sensitive information like Apple ID credentials, banking details, or ask the user to install remote access software. In some cases, they demand payment for fake reversal or protection fees. Red flags include unexpected DocuSign receipts, strange characters in the sender’s email address (like Cyrillic letters), and urgent language. It’s important to remember that companies like Apple do not send billing receipts via DocuSign. These scams aim to create panic and trick users into giving up personal data or access to their devices.

Read Article

Category: Cybersecurity, Innovation Topics

Previous Post: « Banks and credit unions prioritize AI for fraud detection but pace deployments cautiously as leadership cites data handling accuracy gaps and legacy compatibility alongside privacy and security hurdles
Next Post: Paxos backed USDG’s MiCA‑compliant stablecoin (partners include Mastercard, Robinhood and Worldpay) gains Aleo’s zk smart contracts for confidential transactions, on‑chain KYC/AML verification, and encrypted treasury operations »

Copyright © 2025 Finnovate Research · All Rights Reserved · Privacy Policy
Finnovate Research · Knyvett House · Watermans Business Park · The Causeway Staines · TW18 3BA · United Kingdom · About · Contact Us · Tel: +44-20-3070-0188

We use cookies to provide the best website experience for you. If you continue to use this site we will assume that you are happy with it.