by Talia DeMello, Legal Editor, CalChamber
In 2025, 82 percent of cybersecurity incidents contained HR data, which often included personally identifiable information (PII), payroll information and resumes, according to Lab 1’s The Anatomy of a Breach report. Since HR professionals can access an organization’s sensitive materials, they are high-value targets. Plus, HR regularly communicates with a variety of different people and organizations, including new job applicants and potential vendors, and often needs to respond quickly, which provides opportunities for cybercriminals .
And now, HR professionals may have to answer difficult workplace questions after cyber incidents occur: Must employees be paid if systems are down? Can an employee be disciplined for falling victim to a scam?
This premium content is for our members. For immediate access, join online or by phone at 800-331-8877. Or Start a Free Trial Now for 7 days.
Already a Member? Sign In Below.