Security Firms Intercept Spam Runs Supposedly from ADP

Security researchers from GFI Software and MXLabs both security companies have detected yet another set of spam campaigns that pose as communications from the Automatic Data Processing Company.

It maybe mentioned that ADP provides administration services for payroll along with outsourced human capital to 600K enterprises globally of which 7,000 belong to New Zealand and Australia.

Displaying a header "Report," the scam electronic mail tells the recipient that he can now find his Transaction Report on the https://www.flexdirect.adp.com/client/login.aspx site.

The e-mail then informs that a debit charge will be made on the user's bank account in 24-hrs to secure the sums indicated in the report. Also, the e-mail being automated, the user needn't answer it, however, incase of any query/remark, he may get in touch with his ADP Benefits Expert.

This' concluded with ADP Benefit Services' signature.

Moreover, one more edition of the spam mail has the recipient told that the e-mail is auto-generated so needs no reply. Actually, it's to inform him that his digital certificate for utilizing ADP's online facilities will expire in 3-days time on October 14, 2012; therefore he must make his certificate afresh else his use of the ADP online facilities will terminate, the e-mail cautions.

Now, Communications and Research Analyst Jovi Umawing at GFI Security Labs within Philippines posted that web-links embedded on the spam mails in reality led onto URLs which were either compromised or malware-laced and these took onto IP addresses which supported one fake Adobe Flash Player site for taking down software that was equally fake. Gfi.com published this on October 12, 2012.

Worryingly, according to GFI Software, the latest ADP spam runs as well bear an association with contaminations from Blackhole-Zeus.

The company advices users wanting to download software to ensure their page/domain source of the application is genuine. Indeed, within the current instance, one can enter the Adobe web-address inside the browser followed with navigating appropriately for obtaining the Player.

Eventually, in a similar e-mail scam masquerading as ADP, Websense the security company, during the 2nd-week of September 2012, discovered malware-laced phishing messages that were supposedly sent from ADP while captioned as "ADP Invoice Reminder."

Related article: Securities Push Up A Must For Web Companies

» SPAMfighter News - 10/25/2012