Most popular phishing emails imitate HR and their content may be unexpected
Most popular phishing emails imitate HR and their content may be unexpected
Scammers Masquerading as HR Target Employees in Phishing Scams
Your organization’s next cybersecurity nightmare may come from scammers masquerading as HR. According to security software company KnowBe4’s second-quarter 2023 global phishing report, half of the top phishing tests employees clicked featured HR-related subject lines. This alarming trend highlights the importance of awareness and vigilance when it comes to cyber threats.
Per the study, fake HR email subjects included information related to vacation, dress code policies, requests for W-4 updates, and training deadlines. Non-HR-related email scams that received high clicks cited potential typos, Adobe “requests” to sign off on performance reviews, and fake Google notifications about mentions in a shared document. The shift towards HR-related phishing emails is concerning as these subjects evoke a sense of urgency and authority, making employees more likely to click on them.
“We saw a huge uptick in the HR emails getting used,” says James McQuiggan, a security awareness advocate at KnowBe4. “Anything that’s authoritative, anything that drives that emotion with users, [employees will] be real gung ho trying to find out what’s going on.”
Phishing scams create a sense of urgency for the victim, prompting them to click the bait without caution. While employees may have learned to spot more obvious scams, such as fake invoices or requests from an impersonating attacker, it’s easier to let one’s guard down when the email subject concerns payroll or vacation policy changes.
“Creating that sense of urgency is really part of the toolkit that an attacker would use, and if you’re like me or other employees, you’d be concerned if you had an email from HR in general,” says Deron Grzetich, national cyber leader at West Monroe, a digital services firm headquartered in Chicago.
- Business owners require tax planning strategies now more than ever.
- AMOC The global heat distributor, Atlantic current.
- Video shows orca ripping open whale shark and eating its liver.
To prevent phishing scams, employers and HR teams can take several actions:
- Invest in security tools: Employing security tools like two-factor authentication or email filtering software can help prevent phishing scams from landing in inboxes.
- Educate employees: Make employees aware of cyber risks and how to report them. Establish communication best practices to ensure swift action against potential threats.
- Utilize alternative communication channels: Announce policy changes or updates through channels other than email, such as Slack or an internal portal. This reduces the reliance on email as the sole means of conveying important information.
CHROs (Chief Human Resources Officers) should also provide employees with clear instructions for accessing internal information without relying on URL links in emails. “Communication is key when you’re making changes like that. If there are other out-of-band communication methods that you can do with your users, then that goes a long way as well, rather than just relying on [saying], ‘Hey, there’s this email coming,’” says McQuiggan. Operating in a similar fashion to banks, where clients are directed to access information directly through the website, HR departments can enhance security measures.
By implementing these strategies, organizations can better protect their employees from falling victim to phishing scams. Staying vigilant and maintaining clear communication channels are vital to safeguarding sensitive information and maintaining a secure work environment.
Deloitte Report: Expanding Life Span and Well-being through Employer Benefits
A new report from Deloitte suggests that by 2040, employers could help Americans expand their lifespan by 12 years and their years spent in good health by 19. This exciting prospect is based on the idea that offering benefits that support workers’ physical and emotional well-being could lead to improved productivity, higher retention rates, and reduced healthcare costs through illness prevention.
In 2021, company-provided health insurance covered more than half of U.S. residents. By focusing on comprehensive benefits that address the holistic well-being of employees, organizations have the potential to positively impact individual lives while reaping the rewards of a healthier and more engaged workforce.
Around the Table: Important HR Headlines
Here are some important HR headlines:
- Around 84% of LGBTQ workers are out to at least one coworker, but less than half are out to their human resources department.
- Workers are taking fewer overtime shifts, resulting in a reduction of the average workday by 37 minutes. Despite this, productivity remains the same.
- Even at companies where A.I. is banned, employees are secretly using the technology to boost their productivity.
- New data shows that the labor market is slowly cooling and rebalancing itself without the threat of additional layoffs or a recession.
These headlines reflect the ongoing shifts and developments in the HR landscape, highlighting important topics such as inclusivity, changing work patterns, and the impact of technology on productivity.
Watercooler: ANBLE News Highlights
Global 500
The 2023 ANBLE Global 500 ranking is out, revealing that fifty-seven companies employ at least 300,000 people worldwide. Walmart leads the pack with 2.1 million employees. This ranking showcases the scale and influence of multinational companies in today’s global economy.
Workplace Discrimination and Health
From Mark Zuckerberg to Elon Musk, C-suite executives are showing a newfound interest in fitness and getting ripped. However, bills against weight discrimination are circulating in states like New Jersey and Massachusetts, highlighting the vulnerability of women to workplace beauty standards.
Challenges of Returning to the Office
Reports shed light on companies’ internal struggles after mandating a return to the office. Employees likened the displeasure of returning to the office to taking a 2% to 3% pay cut. These challenges emphasize the importance of addressing employees’ concerns and ensuring a smooth transition back to the physical workplace.
The Language Link and Remote Work
Workers in English-speaking countries spend more time working from home, and this trend is not solely linked to national income. This finding highlights the cultural and language factors influencing remote work patterns.
In conclusion, the threat of phishing scams disguised as HR communications demands increased awareness and proactive measures to protect employees and organizations alike. Alongside this, employers have the opportunity to make a positive impact on the well-being of their workforce and reap benefits in terms of productivity and retention. By staying informed about the latest HR trends and news, companies can adapt and thrive in an ever-changing landscape.