A phishing campaign targeting ADAC members uses fake “membership issue” emails to direct victims to a cloned portal designed to steal personal and credit card data. The scam creates urgency by warning of payment failures, exploiting trust in the German automobile association to steal login credentials and financial details.
Fake ADAC “Membership Payment Update” Phishing
Target: ADAC Members in Germany and Europe
Threat Level: High (Credit Card & Membership Data Theft)
Phishing Method Description
This attack uses Organization Impersonation to target the millions of members of the ADAC. Victims receive an email with a professional-looking design, claiming that their “Membership payment failed,” their “Member card is expiring,” or a “Refund” is available.
The link leads to a high-fidelity clone of the ADAC “Mein ADAC” customer portal. The phishing kit is specifically designed to harvest:
ADAC Member Number (Mitgliedsnummer)
Email Address and Password
Full Credit Card Details (Number, Expiration Date, and CVV)
Bank Account Details (IBAN/BIC for SEPA mandates)
3D-Secure SMS Codes: Intercepted in real-time to authorize fraudulent purchases or link the victim’s card to a digital wallet.
⚠️ Red Flags to Watch For
The Deceptive URL: The official domain is adac.de. Phishing sites use lookalike addresses such as mein-adac-service.online, adac-mitgliedschaft.net, zahlung-adac.com, or free hosting subdomains like adac-login.web.app.
The Sender Address: Check the email sender carefully. Official ADAC mail comes from @adac.de. Be wary of addresses like [email protected].
Urgency & Threat: Phrases like “Immediate action required to maintain your breakdown coverage” are used to create panic and force an impulsive click.
🛡️ How to Protect Yourself
The “Manual Entry” Rule: Always access your ADAC account by typing www.adac.de manually into your browser. Never use links provided in emails.
Check the Portal Directly: If you are unsure about your payment status, log into the official “Mein ADAC” area on the real website or check the official ADAC App.
Verify by Phone: If you receive a suspicious payment request, call the official ADAC membership service at 0800 5 10 11 12 (Germany) to verify.
Zero Trust for Card Requests: ADAC rarely asks for your full credit card details via a link in an email to “fix” a payment. Most memberships are handled via SEPA direct debit.
💡 Expert Security Tip:
This is a Subscription-based Phishing Attack. Scammers know that people rely on ADAC for breakdown assistance and will act quickly to “fix” a membership issue. Remember: Your breakdown coverage won’t disappear instantly because of a single email. Always verify any payment issues through the official app or website you access yourself.