Criminals are sending malicious emails that purport to come from payroll services firms in order to infect with malware the computers of payroll administrators from various companies. SANS Internet Storm Center: “For the past couple of weeks, companies that offer outsourced payroll management services have seen their name being abused for phishing scams” In the most recent attack, criminals sent out rogue emails to ADP’s customers claiming that the digital certificates they use to access the company’s Internet services were about to expire. One of the exploits targeted a Java vulnerability identified as CVE-2012-1723 that was patched by Oracle in June.”]