Blog Layout

Oversharing Personal Information

December 15, 2023
In a world of 24/7 social media, and apps for everything from flights to coffee’s, oversharing personal information online affects more of us than we might think.

Whether you’ve shared a seemingly innocent photo of your dog, a video of you supporting your favourite team, or you’ve unwittingly given away details of your banking or passport details, you could be revealing information that is invaluable to a fraudster or identity thief.

There is increasing evidence that employee’s over-sharing personal information on social media platforms can enable or facilitate fraud against their employer; businesses like yours!
People sharing personal information on social media platforms

Fraudsters are using these social media platforms to research their ‘targets’. Using the data they gather, they may create an email account that appears to be an employee, they may spoof the employee’s business email address or in sophisticated cases they may even gain control of the employee’s business email account.  Fraud risks include:

  • Cyber enabled salary diversion fraud: Fraudsters posing as an employee and changing the bank account that the employee’s salary is paid into and diverting their pay to the fraudsters account.
  • Fraud against salary sacrifice schemes: Fraudsters accessing an existing salary sacrifice account, or creating a new account, with the compromised credentials, and then amending personal contact details before requesting to purchase an item.
  • CEO impersonation fraud: Criminals posing as a senior person in the business to persuade staff to make an urgent payment.


Whilst fraudsters are becoming ever more sophisticated in their crimes, there are several fraud prevention actions that can be taken by businesses and individuals, to reduce the risk of fraud, these include:

  • Assessing the risk by measuring the extent to which employee’s are sharing personal information that may enable criminals to commit fraud.
  • Raising awareness amongst staff, of the value of their personal information to fraudsters.
  • Providing resources to empower employee’s to take control of the personal information that they share online.
  • Technical solutions such as multi-factor authentication on business email accounts can protect your business and those you do business with.


As individuals, one of the best ways to avoid oversharing on social media is to set your account to private. Everything we share or post online tells people something about us.  All of the major social media platforms have step-by-step guides to managing your privacy, this article by the National Cyber Security Centre (NCSC) provides links to the privacy sections of most major sites.


Never share details publicly, that could be pieced together and exploited by a fraudster – e.g. your age, birthday, address, workplace, first school, mother’s maiden name, relatives’ or pets’ names, or other obvious passwords.


At SAFE, our team of experienced, professionally qualified counter fraud specialists can help your business to mitigate the financial risks associated with employee's oversharing personal information. 


Call Us

Share this news story...

Fake Nurse
November 26, 2024
When Sarah Whitaker approached an introductory care agency to find a carer for her 89 year old father she expected they would refer a suitably qualified and professional carer. Instead, Sarah was 'horrified' to discover that an unqualified imposter had been in her fathers home for almost three weeks! Unfortunately Sarah's story, reported by Sky News , is not as uncommon as one might expect. In January 2024, a man admitted impersonating a nurse and accessing resuscitation and children's areas at a hospital in Glasgow (BBC News) . SAFE has experience of dealing with a number of similar cases where an unqualified imposter had been found to be working in place of the qualified professional that was expected.
International Fraud Awareness Week 2024 - Official Supporters Badge
October 16, 2024
International Fraud Awareness Week (IFAW) 2024 takes place from 17-23 November, and SAFE continues to support this global effort to minimise the impact of fraud by promoting anti-fraud awareness and education. Fraud and cybercrime account for over 40% of all crime in England and Wales, affecting more people, more often, than any other crime. The social and economic cost to individuals is estimated to be in excess of £4.7 billion a year. So don’t wait until #fraudweek to become a fraud fighter!
October 2, 2024
According to data from Action Fraud, the national fraud and cybercrime reporting service, more than 33,000 people had their social media or email accounts hacked in the 12 months to August 2024, and victims lost a total of £1.4 million. Fraud is now the most commonly experienced crime in the UK, with 1 in 17 adults falling victim to fraudsters. The National Fraud Intelligence Bureau indicate that 80% of fraud is cyber-enabled. October is Cyber Security Awareness Month, an international initiative that aims to educate everyone about cyber safety. To mark the event, Action Fraud and NHS England have launched awareness campaigns to remind people that there are simple ways to protect themselves and our NHS from online threats.
Share by: