Oversharing Personal Information

Dec 15, 2023

In a world of 24/7 social media, and apps for everything from flights to coffee’s, oversharing personal information online affects more of us than we might think.

Whether you’ve shared a seemingly innocent photo of your dog, a video of you supporting your favourite team, or you’ve unwittingly given away details of your banking or passport details, you could be revealing information that is invaluable to a fraudster or identity thief.

There is increasing evidence that employee’s over-sharing personal information on social media platforms can enable or facilitate fraud against their employer; businesses like yours!

People sharing personal information on social media platforms

Fraudsters are using these social media platforms to research their ‘targets’. Using the data they gather, they may create an email account that appears to be an employee, they may spoof the employee’s business email address or in sophisticated cases they may even gain control of the employee’s business email account. Fraud risks include:

Cyber enabled salary diversion fraud: Fraudsters posing as an employee and changing the bank account that the employee’s salary is paid into and diverting their pay to the fraudsters account.
Fraud against salary sacrifice schemes: Fraudsters accessing an existing salary sacrifice account, or creating a new account, with the compromised credentials, and then amending personal contact details before requesting to purchase an item.
CEO impersonation fraud: Criminals posing as a senior person in the business to persuade staff to make an urgent payment.

Whilst fraudsters are becoming ever more sophisticated in their crimes, there are several fraud prevention actions that can be taken by businesses and individuals, to reduce the risk of fraud, these include:

Assessing the risk by measuring the extent to which employee’s are sharing personal information that may enable criminals to commit fraud.
Raising awareness amongst staff, of the value of their personal information to fraudsters.
Providing resources to empower employee’s to take control of the personal information that they share online.
Technical solutions such as multi-factor authentication on business email accounts can protect your business and those you do business with.

As individuals, one of the best ways to avoid oversharing on social media is to set your account to private. Everything we share or post online tells people something about us. All of the major social media platforms have step-by-step guides to managing your privacy, this article by the National Cyber Security Centre (NCSC) provides links to the privacy sections of most major sites.

Never share details publicly, that could be pieced together and exploited by a fraudster – e.g. your age, birthday, address, workplace, first school, mother’s maiden name, relatives’ or pets’ names, or other obvious passwords.

At SAFE, our team of experienced, professionally qualified counter fraud specialists can help your business to mitigate the financial risks associated with employee's oversharing personal information.

Call Us

< Older Post

Newer Post >

Share this news story...

International Fraud Awareness Week 2024 - Official Supporters Badge

International Fraud Awareness Week (IFAW) 2024

16 Oct, 2024

International Fraud Awareness Week (IFAW) 2024 takes place from 17-23 November, and SAFE continues to support this global effort to minimise the impact of fraud by promoting anti-fraud awareness and education. Fraud and cybercrime account for over 40% of all crime in England and Wales, affecting more people, more often, than any other crime. The social and economic cost to individuals is estimated to be in excess of £4.7 billion a year. So don’t wait until #fraudweek to become a fraud fighter!

October is Cyber Security Awareness Month

02 Oct, 2024

According to data from Action Fraud, the national fraud and cybercrime reporting service, more than 33,000 people had their social media or email accounts hacked in the 12 months to August 2024, and victims lost a total of £1.4 million. Fraud is now the most commonly experienced crime in the UK, with 1 in 17 adults falling victim to fraudsters. The National Fraud Intelligence Bureau indicate that 80% of fraud is cyber-enabled. October is Cyber Security Awareness Month, an international initiative that aims to educate everyone about cyber safety. To mark the event, Action Fraud and NHS England have launched awareness campaigns to remind people that there are simple ways to protect themselves and our NHS from online threats.

SAFE win a place on the YPO framework

By Andy Knight • 27 Aug, 2024

Following the submission of a successful bid, SAFE are proud to be included in the YPO Internal Audit and Assurance, and Counter Fraud Investigation Services Framework. Beating stiff competition, our bid was the highest scoring in Lot 3: Counter Fraud Investigation Services. YPO is one of the largest public sector purchasing consortiums in the UK, and the inclusion of SAFE on the framework means that the following organisations can easily access our award winning, cost-effective services: • Local authority councils, • Educational establishments, • Police, fire and rescue, maritime/coastguard agency emergency services, • NHS bodies, the HSC (Northern Ireland) and ambulance services, • Central government departments and their agencies, • Registered charities, • And more, full list available here .