Watch out for the spam malware mail. Regarding digital certificate
Here is the header of the mail and below is the mail. If you get this in your inbox DO NOT OPEN THE ATACHMENT. DELETE! IT’S BEING SENT FROM MONTANA – BULGARIA
They are posing as ADPClientServices@adp.com
DomainKey-Status: no signature
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on XXX
X-Spam-Status: No, score=5.3 required=7.0 tests=BAYES_50,HTML_MESSAGE,
MIME_HTML_ONLY,RCVD_IN_XBL,RDNS_NONE,SPF_FAIL autolearn=no version=3.2.5
Received: (qmail 962X invoked from network); 27 Nov 2012 12:34:33 -0500
Received-SPF: fail (XXX: domain of adp.com does not designate 184.108.40.206 as permitted sender) client-ip=220.127.116.11; firstname.lastname@example.org; helo=[18.104.22.168];
Received: from unknown (HELO ?22.214.171.124?) (126.96.36.199)
by XXX with SMTP; 27 Nov 2012 12:34:32 -0500
Date: Tue, 27 Nov 2012 19:34:31 +0300
From: “ADP Client Services” <ADPClientServices@adp.com>
Subject: ADP Generated Message: Digital Certificate Expiration
This e-mail has been sent from an automated system.
PLEASE DO NOT REPLY.
If you have any questions, please contact your administrator for assistance.
Digital Certificate About to Expire
The digital certificate you use to access ADP’s Internet services is about to expire.
If you do not renew your certificate by the expiration date below, you will not be able to access ADP’s Internet services.
Days left before expiration: 1
Expiration date: Tue, 27 Nov 2012 19:34:31 +0300
Renewing Your Digital Certificate
1. Install new digital certificate from attached file (self-extracting archive)
2. Follow the instructions on the screen.
Deleting Your Old Digital Certificate
After you renew your digital certificate, be sure to delete the old certificate. Follow the instructions at the end of the renewal process.
- Cybercriminals Use Fake Digital Certificates to Sign Police Trojans (news.softpedia.com)