Recruitment data also appeared in 58% of data breach incidents, containing information such as names, addresses, and contact details that are commonly included in resumes and cover letters.
“The fact that HR data was found in 82% of the analysed breaches should be a top concern for all company leaders, from the CHRO to the CISO,” said Robin Brattel, Co-founder and CEO of Lab 1, in a statement to HRD.
Impact of leaked HR data
According to the report, breaches rich in HR content and correspondence are perfectly suited for AI-enabled weaponisation.
“These narrative-rich datasets can be used to generate synthetic identities, deepfake content, or voice-clone phishing attacks with high fidelity,” the report read.