Banks fear a growing number of employees are unwittingly exposing valuable information to hackers or in some cases leaving digital clues that make a breach possible.
Several banks are also increasingly testing whether their employees unintentionally leave them susceptible to hackers by falling prey to “spear-phishing” attempts, in which criminals lure recipients to click on links.
Weeks after JP Morgan Chase & Co was hit with a massive data breach that exposed information from 76 million households, the country’s biggest bank by assets sent a fake phishing email as a test to its more than 250,000 employees. Roughly 20% of them clicked on it, according to people familiar with the email.
There’s no excuse for employees, in this day and age, being so gullible or so careless.
If employees are going to continue to be willfully irresponsible, maybe it’s time for employers to get hard-nosed in the workplace: company equipment is for company business exclusively, including during lunch or other breaks. With firing being the default sanction for misuse.