There is a cyberattack every 39 seconds, according to recent estimates from the University of Maryland. Data breaches and cyberattacks are daily headlines—and employee beneﬁts plans are no exception to those threats. In fact, employee beneﬁts plans are even more vulnerable as the coronavirus pandemic continues. Organizations and beneﬁts providers are relying heavily on electronic access, ultimately creating new vulnerabilities.
Retirement, savings and health plans are attractive targets for cybercriminals seeking access to plan assets and the personal information of participants and beneﬁciaries. Sensitive information is valuable information when it comes to cyberattacks.
Some examples of cyberthreats include phishing, malware and ransomware attacks. Lost or stolen mobile devices, laptops and ﬂash drives that hold personal information are additional tangible threats to beneﬁts plans.
Organizations must always be ready for the worst to happen. In the unfortunate event of a security breach, it’s important to be prepared with a basic communication and action plan. Even better, employers can incorporate security breaches into their comprehensive reputation management plans. Internal and external audiences should be kept in mind as well as appropriate actions to protect information and restore overall system integrity. If not handled quickly and appropriately, reputational damage could be an additional threat to all parties involved in employee beneﬁts plans.