Key to remember: Cybercriminals are taking advantage of FMLA requests sent via email to launch cyberattacks.
Applies to: Employers, particularly those who are covered by the FMLA.
Impact to customers: Employers need to be careful when receiving emails with suspicious attachments that reference the FMLA.
Possible impact to JJK products/services: This information will be in the FMLA Manager news feed.
While it may be second nature for company leave administrators to open attachments from employees that appear to be requests for leave under the Family and Medical Leave Act (FMLA), those administrators need to be certain that the email and attachment do not harbor malware. In the earlier days of the pandemic, cybercriminals were sending out suspicious emails to employers that appeared to be from the U.S. Department of Labor regarding the Families First Coronavirus Response Act (FFCRA). Now they are posing as employees asking for leave.
In one example attack, an email launched banking malware designed to steal users’ financial data. A suspicious attached document could also include a COVID-19 reference, as the FFCRA remains effective until December 31. Employees could also take FMLA leave if they have COVID-19, so the requests might seem sincere.
Such attacks have been on the rise as businesses have been reopening and employees have been returning to work. When the pandemic first hit, the number of cyberattacks dropped as businesses, who are often the victim, closed their doors. Now the attacks are on the rise again. Employees, including leave administrators, are often a weak link in the cybersecurity chain.
If you are the point person for employee leave at your company, in addition to not using the same password for multiple logins, to help keep your company safe from cyberattacks of this kind, observe the following steps:
Attacks may also come in the form of text messages or other messaging service, and employees might use such platforms to request leave. Phishing and smishing continue to be the leading cause of breaches. Phishing is the practice of sending emails that appear to be from a reputable source in order to induce recipients to reveal personal information or to gain access to a system. Smishing is a phishing attack using messaging instead of email. These can all be used to launch ransomware, which is an insidious type of malware that encrypts, or locks, valuable digital files and demands a ransom to release them.
This article was written by Darlene M. Clabault, SHRM-CP, PHR, CLMS, of J. J. Keller & Associates, Inc. The content of these news items, in whole or in part, MAY NOT be copied into any other uses without consulting the originator of the content.