193

ADP gives you a person’s username and the name of all their employers when you type in their name and phone number. (lemmy.world)

submitted 5 days ago* (last edited 4 days ago) by Aslanta@lemmy.world to c/privacy@lemmy.ml

29 comments fedilink hide all child comments

On their website, go to the sign in screen and click “Need help signing in”. Go through the prompts and watch the person’s username, and the legal name of all their employers (who have ever used ADP) appear on the screen.

Note: Whether or not you select “my current employer uses ADP”, it will still show you the full list of both current and previous employers (who use ADP).

From there, it is remarkably easy to gain access to paycheck information if you are ~~a grocer, a landlord, a retailer, or anyone of the 2737429193 entities who may~~ have a little extra data on them.

Edit: To address some of the comments, I feel I need to clear something up. I’m not saying this is some authoritarian configuration error ADP messed up on. It’s a standard login that works conveniently for ADP and also happens to be negligent in privacy protection. And it’s most likely completely legal for most people in the U.S.

you are viewing a single comment's thread
view the rest of the comments

[-] AFaithfulNihilist@lemmy.world 5 points 4 days ago

It's weird cuz when I go to the site I don't see anything like that as even an option.

I don't see any option that says "need help signing in" and you have to type in your social security number before you even get to the page that has your phone number on it? What am I missing?

[-] mattd@programming.dev 3 points 4 days ago

I saw the need help signing in option. But after entering name and phone number, I had to enter last 4 of SSN, which I think is harder to find out

Additionally, afterwards I got an email that my user ID was requested

[-] CodingCarpenter@lemm.ee 2 points 3 days ago

Same at immediately asked me for my social security number. So you would need to know my first name last name my phone number or email and my social security. I'm not sure what else they could do to protect it outside of two factor

[-] Aslanta@lemmy.world 1 points 3 days ago

ADP.com > menu > sign in > need help signing in > my current employer uses ADP

If the person does currently work with a company using ADP, it will work 100% of the time.

If the person USED to work for a company using ADP, it will work some of the time. I’m guessing it has to do with the particular ADP/subsidiary services used by the most recent employer. That’s just a guess.

this post was submitted on 28 Dec 2024

193 points (98.5% liked)

Privacy

32544 readers

475 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS