The role of HR is expanding at a breakneck pace as technology advances and worker expectations change. Now, even cybersecurity has added itself to the list of responsibilities HR teams need to consider. With the growing rate of cybercrime and candidate fraud targeting HR departments globally, cybersecurity has become interlinked with human resources.
HR teams have always handled sensitive data, but it has never been easier to steal that information. A single security breach — big or small — can cost a company thousands of dollars in lost revenue and fines, and even worse devastate employees’ trust in HR.
In 2025, there has never been a greater need for HR leaders to take steps to properly prepare for cyber treats targeting their teams.
In this HR 411 article, we’ll explore why cybersecurity has become a top concern for HR and the threats your team should be watching for in 2025.
Why HR Is on the Frontlines of Cybersecurity
HR sits at the center of some of the most sensitive data in any organization. Your team handles social security numbers, payroll information, health records and more, making HR the ideal target for cybercriminals. The rise of remote and hybrid work has also expanded HR’s digital footprint substantially and gives hackers more opportunities to gain access to this information.
Take the recent rise in candidate fraud for example. Gartner suggests that by 2028, one in four candidate profiles worldwide could be fake.
One notorious case was revealed in 2024, when the U.S. Justice Department uncovered a three-year scam in which stolen identities of American citizens were allegedly used by foreign IT workers from various countries to gain jobs at over 300 firms across America, resulting in at least $6.8 million in revenue generated for the overseas workers. Each of these people had to go through HR to be hired, and yet none of them were detected.
While companies used to be able to rely solely on their IT or privacy departments in the past, new threats have emerged that require more collaboration. As an HR leader, you are in a unique position to create a security-minded culture. From onboarding to ongoing education, your team controls the touchpoints where employees learn behaviors that can reduce risk. Partnering with IT and privacy ensures that policies aren’t just technical guidelines but lived practices across the workforce.
Cybercrime Trends HR Should Watch For
In 2025, cyberattacks are growing more sophisticated and harder to detect. Here is what we know about rising cybercrime trends that pose a direct threat to HR departments.
AI-enhanced phishing emails
Phishing has been around for many years, but AI has given hackers the ability to create more sophisticated and personalized scams. Hackers will use this to mimic internal emails or service requests to HR.
What’s worse is they aren’t just targeting HR but posing as HR in an attempt to get access through employees. HR-related phishing emails are the most common type of attack, accounting for 42% of all phishing attempts, followed by 30% for IT-related emails.
Payroll diversion scams
HR is a prime target not just for its data but also for its authorization of funds. Scammers will try to impersonate employees via spoofed or compromised email accounts, requesting direct deposit changes. Funds are then rerouted to attacker-controlled accounts. HR staff handling payroll updates are especially vulnerable.
Candidate or identity fraud
Recently there has been an increase in hackers using fake or stolen identities to submit resumes or gain access to systems. These scammers are submitting fake resumes with malicious attachments or links, hoping talent management officers will click them. Phishing attempts are tailored to look like genuine recruitment interactions.
On another front, cybercriminals are increasingly exploiting deepfakes or using stolen identities to get hired and gain access to company data or funds.
Third-party platform attacks
Third-party platform exploits are another surging cybercrime trend that uniquely threatens HR departments. As organizations increasingly depend on third-party HR technology vendors, attackers exploit this dependency by breaching the systems’ security or by injecting malware into legitimate software updates. This one is tricky for HR departments since HR cannot simply cut ties with these services that are essential to daily operations.
Sources: Garter, KnowBe4
