A new scam arrived today, this time about a Digital Certificate. A client also had the same email (2 actually) so it must be a wave going around.

Is is purportedly from ADP, a payroll system, but includes links to obviously hacked sites for phishing

They are looking for ADP logins, to then access personal information of companies employees.

Here are the two emails

Subject: ADP Generated Message: First Notice – Digital Certificate Expiration

This e-mail has been sent from an automated system. PLEASE DO NOT REPLY. If you have any questions, please contact your administrator for assistance.

———————————————————————
Digital Certificate About to Expire
———————————————————————
The digital certificate you use to access ADP’s Internet services is about to expire. If you do not renew your certificate by the expiration date below, you will not be able to access ADP’s Internet services.

Days left before expiration: 2
Expiration date: Jul 11 23:59:59 GMT-03:59 2012

——————————————————————–
Renewing Your Digital Certificate
———————————————————————
1. Go to this URL: https://netsecure.adp.com/pages/cert/register2.jsp

2. Follow the instructions on the screen.

3. Also you can download new digital certificate at https://netsecure.adp.com/pages/cert/pickUpCert.faces.

———————————————————————
Deleting Your Old Digital Certificate
———————————————————————
After you renew your digital certificate, be sure to delete the old certificate. Follow the instructions at the end of the renewal process.

 

and…

 

Subject: ADP Security Management Update

ADP Security Management Update

Reference ID: 68760

Dear ADP Client July 2012

This message is to inform you of the upcoming ?Phase 2? enhancement to ADP Security Management (formally ADP Netsecure). This is where you manage your users? access to ADP?s Internet services, and includes the self-service registration process.

Effective July 25th, ADP Security Management will reflect a new user interface. This will include tasks such as Account Maintenance, User Maintenance, and Company Maintenance within Security Management.

Please review the following information:

? Click {link} to view more details of the enhancements in Phase 2

? Complete the What?s New in Security Management Service {link} (Expected to take about 15 minutes)

? View the Supported Browsers and Operating Systems, listed. {link} These are updated to reflect more current versions to ensure proper presentation of the updated user interface. It is important to note that the new ADP Security Management is best accessed using Microsoft Internet Explorer Version 8 or Mozilla Firefox Version 3.6, at minimum.

This email was sent to active users in your company that access ADP Netsecure with a security role of ?security master? or ?security admin?. You may have other users that also access ADP Netsecure with other security roles. Please inform those users of these enhancements, noting that the above resources will have some functionality that does not apply to their role.

As always, thank you for choosing ADP as your business partner! If you have any questions, please contact your ADP Technical Support organization.

Ref: 0725 MSAMALONIS1@TWNSHP

It is important to look at the status bar at the bottom of your email client, as this will display the underlying link that you would be taken to if you click it. If it looks anyway suspicions, do not click the link

7 thoughts on “New Scam email from ADP Netsecure

  1. I received a notice today that I had 45k due. I wondered if it were a service I signed up for some time back to secure my web url. I Googled “ADP Net Secure” and found it was nothing of the sort. In the Deleted Items box and then to oblivion it went.

  2. I received one. unfortunately it was before I knew about it and opened the e-mail. Which says they will debit my account within one day of bank business. I do not know what to do now but may contacting my bank will be the best.

    1. Hi there, Yes, for anyone who realises they have given away their details, contacting the service provider that was used as the Trojan for the scam and if the details you have used (email and password etc) is used elsewhere you will need to go and change them as well.

Leave a Reply

Your email address will not be published. Required fields are marked *