Human Resources (HR) is one of the primary industry sectors to be targeted by cyber criminals, according to recent research. Indeed, 60% of data breaches within an organisation have occurred as a result of successful cyber attacks through HR functions.

Why is HR so often a target for cyber criminals?

HR departments manage personal and sensitive information on behalf of organisations relating to issues such as recruitment, finance, medical and legal concerns. Fraudsters can use such information for blackmail if they manage to obtain it – and therefore it is often this department that is most vulnerable to attack.

The increase in remote working has also presented increased cyber threats. The pandemic saw a significant rise in internet and home working, which has weakened some security processes, inadvertently opening systems to cyber criminals.

How can these risks be reduced?

• All HR departments should be hypervigilant when managing recruitment and suppliers: do not simply open every attachment from applicants – ensure appropriate systems are in place and engage your IT and security departments.
• Ensure policies and procedures are up to date, including procedures for home working. Everyone should know their roles and responsibilities.
• Review and revoke employee access – ensure employees only have access to what they need in order to do their jobs. This will in turn make it harder for hackers to roam freely within an organisations’ systems.
• Nealy all cyber attacks involve victims being manipulated into taking action or divulging information. Introducing cyber training to all employees will help to ensure cyber criminals do not take advantage.

For more information on how to stay safe online visit our website https://www.nebrcentre.co.uk/ where we offer a range of resources, including a FREE core membership package.