Oversharing Personal Information

December 15, 2023
In a world of 24/7 social media, and apps for everything from flights to coffee’s, oversharing personal information online affects more of us than we might think.

Whether you’ve shared a seemingly innocent photo of your dog, a video of you supporting your favourite team, or you’ve unwittingly given away details of your banking or passport details, you could be revealing information that is invaluable to a fraudster or identity thief.

There is increasing evidence that employee’s over-sharing personal information on social media platforms can enable or facilitate fraud against their employer; businesses like yours!
People sharing personal information on social media platforms

Fraudsters are using these social media platforms to research their ‘targets’. Using the data they gather, they may create an email account that appears to be an employee, they may spoof the employee’s business email address or in sophisticated cases they may even gain control of the employee’s business email account.  Fraud risks include:

  • Cyber enabled salary diversion fraud: Fraudsters posing as an employee and changing the bank account that the employee’s salary is paid into and diverting their pay to the fraudsters account.
  • Fraud against salary sacrifice schemes: Fraudsters accessing an existing salary sacrifice account, or creating a new account, with the compromised credentials, and then amending personal contact details before requesting to purchase an item.
  • CEO impersonation fraud: Criminals posing as a senior person in the business to persuade staff to make an urgent payment.


Whilst fraudsters are becoming ever more sophisticated in their crimes, there are several fraud prevention actions that can be taken by businesses and individuals, to reduce the risk of fraud, these include:

  • Assessing the risk by measuring the extent to which employee’s are sharing personal information that may enable criminals to commit fraud.
  • Raising awareness amongst staff, of the value of their personal information to fraudsters.
  • Providing resources to empower employee’s to take control of the personal information that they share online.
  • Technical solutions such as multi-factor authentication on business email accounts can protect your business and those you do business with.


As individuals, one of the best ways to avoid oversharing on social media is to set your account to private. Everything we share or post online tells people something about us.  All of the major social media platforms have step-by-step guides to managing your privacy, this article by the National Cyber Security Centre (NCSC) provides links to the privacy sections of most major sites.


Never share details publicly, that could be pieced together and exploited by a fraudster – e.g. your age, birthday, address, workplace, first school, mother’s maiden name, relatives’ or pets’ names, or other obvious passwords.


At SAFE, our team of experienced, professionally qualified counter fraud specialists can help your business to mitigate the financial risks associated with employee's oversharing personal information. 


Call Us

Share this news story...

June 26, 2025
As fraud risks continue to evolve, staying informed and vigilant is more important than ever. This summer, SAFE is proud to launch a comprehensive Fraud Awareness Webinar Series designed to equip our clients and the wider healthcare community with the knowledge and tools to detect, prevent, and respond to fraud effectively. Why Attend? Fraud is a growing threat that impacts organisations across all industries. Our expert-led webinars will cover a range of timely topics, including mandate fraud, imposter fraud, the fraud triangle and the benefits of early intervention.
Picture of ISO Stamp
By Charlotte Park January 14, 2025
We are excited to announce that we have recently had the ISO 9001:2015 audit and can confidently say we passed with flying colours!
Fake Nurse
November 26, 2024
When Sarah Whitaker approached an introductory care agency to find a carer for her 89 year old father she expected they would refer a suitably qualified and professional carer. Instead, Sarah was 'horrified' to discover that an unqualified imposter had been in her fathers home for almost three weeks! Unfortunately Sarah's story, reported by Sky News , is not as uncommon as one might expect. In January 2024, a man admitted impersonating a nurse and accessing resuscitation and children's areas at a hospital in Glasgow (BBC News) . SAFE has experience of dealing with a number of similar cases where an unqualified imposter had been found to be working in place of the qualified professional that was expected.