ADP, the payroll, tax, and benefits administration used by over 640,000 companies, has mistakenly exposed sensitive data, including its customers’ employee tax and salary information. ADP customer U.S. Bank, the nation’s fifth-largest commercial bank, warned its employees that their tax data had been compromised due to a vulnerability in ADP’s customer portal. This is problematic because the thieves behind this breach can use the stolen information to fraudulently file for a tax refund in someone else’s name.
ADP claims their systems were not compromised, and that this breach stemmed from an authentication code posted by U.S. Bank on an insecure page, thus allowing the thieves access to the ADP portal. ADP released a statement that they are working with federal law enforcement to uncover the perpetrators behind this theft.
A new ransomware has emerged, with the claim that ransom money will be donated to a children’s charity. Like traditional ransomware, it encrypts all the data on a PC before demanding the ransom. The key difference is that the ransom note informs users that their files are locked, directs them to send 5 bitcoins—approximately $2,200—to a specific email address, and informs them that “Many children will receive presents and medical help!”
“Based on research by Colombian security analysis group Nyxbone, the threat is a combination of ransomware families, such as CryptoWall 3.0, WryptoWall 4.0, and the recent CryptXXX.” The infection occurs by spam email, which contains links to malicious websites. When users access these malicious websites with browsers containing vulnerabilities, the ransomware automatically starts the encryption process.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.