South Africa
HR Management & Leadership
Submit newsAdvertiseSubscribe
NewsPress Office NewsCompaniesJobsEventsPeopleMultimediaFeaturesOpinion
AdvertiseSubmit news

Industries

All industriesAgricultureAutomotiveConstruction & EngineeringEducationEnergy & MiningEntrepreneurshipESG & SustainabilityFinanceHealthcareHR & ManagementICTLegalLifestyleLogistics & TransportManufacturingMarketing & MediaPropertyRetailTourism & Travel

Features

Youth MonthWomen's MonthCannes LionsAfrica MonthBizTrendsBizTrendsTVMandela MonthOrchids and OnionsMore Sections..

In the news

RichfieldPnetSimply Financial ServicesHarmony ClinicEnquire about a company Biz Press Office
Agriculture
Automotive
Construction & Engineering
Education
Energy & Mining
Entrepreneurship
ESG & Sustainability
Finance
Healthcare
HR & Management
ICT
Legal
Lifestyle
Logistics & Transport
Manufacturing
Marketing & Media
Property
Retail
Tourism & Travel

News

Industries

Companies

Jobs

Events

People

Video

Audio

Galleries

Submit content

My Account

Advertise with us

Subscribe & Follow

Trending

2 days 7 days 30 days By Industry
Advertise your job vacancies
    Post your Job Ad here >>
    Search jobs

    Jobs

    More jobsSubmit a jobOpen account

    Why HR is at risk from cyberattacks

    Human Resources professionals (HRs) are a common, high risk target for cyberattacks - simply because they are easily accessible. They are the "front of house" for businesses, with the contact details often available on the company website. While this is to make them easy to reach for current and future employees, and anyone else who chooses to do so.
    9 Apr 2021
    9 Apr 2021
    Why HR is at risk from cyberattacks
    © stokkete – 123RF.com

    They are also high-value contacts because HRs are the guards of company information. They have access to and protect company intellectual property and employee personal information. And this data is highly valuable to cyber attackers. Here are three main ways in which HR professionals are vulnerable to attack:

    • Incoming mail: Cybercriminals penetrate the corporate security perimeters by sending an employee an email containing a malicious attachment or link. Opening this link can release a virus, which can download personal files.
    • Access to personal data: HRs have access to all personnel data held by a company. By compromising a HR employee's mailbox, access is opened.
    • Email hijacking: Here, a senior staff member's mail account is hacked. It sends out emails to colleagues requesting fund transfers or the forward of confidential information.

    Kaspersky and B2B International also researched employees' role in a business's fight against cybercrime. "We've found that just over half of businesses (52%) believe they are at risk from within. Their staff, whether intentionally or through their carelessness or lack of knowledge, are putting the businesses they work for at risk," explains Lehan van den Heever, enterprise cyber security advisor, Kaspersky. "This is why staff training is essential in raising awareness among personnel and motivating them to pay attention to cyberthreats and countermeasures ― even if it’s not part of their specific job responsibilities."

    To minimise the likelihood of intruders penetrating an HR department, van den Heever recommends the following tips:

    • Employee-focused security measures such as employee engagement and training on cyberattacks.
    • Identify compromised file formats that come through, looking like resumes and work samples.
    • Install updates and ensure that anti-virus protection is always on.
    • Isolate HR computers on a separate subnet. If one computer is compromised, the threat cannot spread.
    • Store personal data on a different server, not on HR machines.
    • Update software on HR computers regularly and maintain a strict and easy-to-follow password policy.

    Read more: Kaspersky, Kaspersky Internet Security, Kasperskly Lab, cyberattack, cyberattack prevention, cybersecurity breaches, cybersecurity breach
    Share this article
    NextOptions
    Related
    OptionsNext
    Top stories
    More news
    Let's do Biz