These campaigns exploit the trusted relationship between businesses and regulatory authorities. Attackers impersonate entities like the Department of Health and Human Services, the Maryland Department of Transportation and the City of Milwaukee, among others, using legitimate DocuSign accounts and APIs to craft convincing fraudulent documents.