{"id":227788,"date":"2026-06-08T08:00:00","date_gmt":"2026-06-08T12:00:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/08\/the-cybersecurity-threats-hr-can-no-longer-hand-off-to-it\/"},"modified":"2026-06-08T08:10:18","modified_gmt":"2026-06-08T12:10:18","slug":"the-cybersecurity-threats-hr-can-no-longer-hand-off-to-it","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/08\/the-cybersecurity-threats-hr-can-no-longer-hand-off-to-it\/","title":{"rendered":"The cybersecurity threats HR can no longer hand off to IT"},"content":{"rendered":"<p><a href=\"https:\/\/hrexecutive.com\/data-breach-report-reveals-new-risks-for-hr-leaders\/\">The cybersecurity threats HR can no longer hand off to IT<\/a><\/p>\n<p><a href=\"https:\/\/hrexecutive.com\/data-breach-report-reveals-new-risks-for-hr-leaders\/\">https:\/\/hrexecutive.com\/data-breach-report-reveals-new-risks-for-hr-leaders\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-08 08:00:00<\/a><\/p>\n<p>Source Domain: <a href=\"hrexecutive.com\">hrexecutive.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. The 2026 Verizon Data Breach Investigations Report says North Korean IT worker schemes used stolen identities, remote hiring and laptop farms run by local accomplices. It estimates that those operations may have leveraged about 15,000 possible identities.<br \/>\nThe report, which analyzed more than 31,000 incidents and more than 22,000 confirmed breaches, documents how cyber risk and workforce risk occupy the same organizational space. Here are three findings from the report that may land on the CHRO\u2019s desk.<br \/>\nThe fake worker problem has a hiring solution<br \/>\nThe North Korean IT worker operation documented in the 2026 DBIR has mechanics that are familiar to any recruiter, including polished resumes, strong technical interviews and remote onboarding. But these \u201ccandidates\u201d are, in fact, coordinated state actors using tools that once seemed futuristic.<br \/>\nEnsar Seker, SOCRadar<br \/>\n\u201cThe North Korean IT worker threat is no longer just a cybersecurity issue. It is now an insider risk and workforce integrity problem,\u201d Ensar Seker, chief information security officer at SOCRadar, a threat intelligence firm, told HR Executive. \u201cTraditional background checks are often ineffective because these actors use synthetic identities, stolen credentials, AI-enhanced resumes and even deepfake-assisted interviews.\u201d<br \/>\nThe DBIR found that third-party supply chain breaches jumped 60% and now account for 48% of all incidents. Many infiltrations occur through subcontractors or fast-tracked technical recruiting pipelines where identity validation is weakest.<br \/>\n\u201cHiring can no longer operate independently from cyber risk management,\u201d Seker says, \u201cespecially for remote technical roles with privileged access.\u201d He suggests that organizations need to implement multi-layered identity verification such as live identity validation during interviews, device and geolocation consistency checks, payroll banking verification and tighter contractor onboarding controls.<br \/>\nBehavioral monitoring after hire matters, too, according to Seker. Unusual working hours, unexpected VPN patterns and attempts to access source code repositories or collaboration platforms beyond an employee\u2019s assigned scope are all red flags.<br \/>\nRead more: How North Korean operatives get hired, and how HR can stop them<br \/>\nSocial engineering has outpaced awareness training<br \/>\nThe volume of AI-assisted text in malicious emails has doubled, and attackers are no longer sending recognizable phishing templates. \u201cAnnual phishing videos are no longer enough,\u201d says Seker. \u201cEmployees are now facing highly convincing AI-generated voice calls, deepfake executives, synthetic recruiters and real-time social engineering attacks designed to create urgency and bypass critical thinking,\u201d Seker says.<br \/>\nOrganizations need to teach employees verification discipline, rather than simply teaching \u2018suspicion,\u2019 says Seker. \u201cEmployees should be trained to slow down high-pressure requests, independently verify sensitive actions through secondary channels and recognize manipulation tactics involving urgency, authority or fear,\u201d he says.<br \/>\nContinuous micro-training and live simulations should be built around the actual attack scenarios employees encounter: fake Teams calls, AI voice messages, payroll scams, multifactor verification fatigue attacks and impersonation attempts targeting HR and finance teams specifically. HR is a high-value target in these scenarios because compensation data, direct deposit information and identity documents are exactly what attackers are after.<br \/>\nShadow AI is a data governance crisis<br \/>\nAccording to the DBIR, employee use of unapproved AI tools tripled in a single year, from 15% to 45% of the workforce. The report also found that shadow AI is now the third most common non-malicious insider action detected in data loss prevention systems, a fourfold increase from the previous year.<br \/>\nThe most common data type being uploaded to unauthorized AI platforms, by a significant margin, is source code. Research and technical documentation appeared in 3.2% of those policy violations, according to the report. \u201cAs if the source code part was not enough, you now have potential intellectual property walking out the door,\u201d according to the report.<br \/>\nThe increase in employees uploading sensitive data into generative AI platforms reflects a gap between attention to security and attention to productivity, Seker says. \u201cEmployees are adopting AI tools faster than organizations are building governance around them. This is not purely a technology problem. It is a workforce behavior and policy problem.\u201d<br \/>\nBlanket bans have not worked because employees use banned AI at work anyway. Seker says the more effective path is clear usage policies that define what data can and cannot be shared, with role-specific guidance for departments like HR, legal, engineering and finance that handle sensitive information daily.<br \/>\n\u201cThe companies handling this best are treating generative AI governance similarly to cloud adoption years ago,\u201d Seker says, \u201cenabling innovation while building visibility, guardrails and accountability around how employees use these tools.\u201d<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The cybersecurity threats HR can no longer hand off to IT https:\/\/hrexecutive.com\/data-breach-report-reveals-new-risks-for-hr-leaders\/ Publish Date: 2026-06-08&#8230;<\/p>\n","protected":false},"author":1,"featured_media":227789,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/hrexecutive.com\/wp-content\/uploads\/2021\/11\/Pilnick-byline-art.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,30,24,25],"class_list":["post-227788","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-breach","tag-cybersecurity","tag-phishing"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/227788"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=227788"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/227788\/revisions"}],"predecessor-version":[{"id":227790,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/227788\/revisions\/227790"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/227789"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=227788"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=227788"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=227788"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}