Cybercriminals accessed a W-2 portal maintained by payroll company ADP recently to glean sensitive information about employees at a handful of companies. The company is stressing that the company itself wasn t hacked, but that it appears identity thieves may have been able to create ADP accounts in the names of victims using previously leaked personally identifiable information. ADP has more than 150 offices across North America and provides business payroll and HR products to 640,000 companies in 130 countries. U.S. Bank is purportedly one of the companies involved in the case according to KrebsonSecurity.com.
Source: https://threatpost.com/identity-thieves-used-leaked-pii-to-steal-adp-payroll-info/117842/