This email impersonated HR or a benefits system. Phishers use HR lures because they contain sensitive information and people respond quickly to them.
HR Phishing Scenarios
- Benefits enrollment opening
- Policy updates requiring acknowledgment
- Emergency contact or profile updates
- Payroll or tax form requests
- Performance review or 1-on-1 scheduling
Red Flags in HR Emails
- Generic greeting ("Dear Employee")
- Email links for enrollment or updates
- Unexpected deadlines
- Requests for personal information via email
- Sender domain doesn't match your HR system
HR Email Safety
- Go to your known HR portal rather than clicking email links
- Never enter personal information on pages reached via email
- Verify major changes (benefits, payroll) through direct HR contact
- If unsure, contact your HR business partner directly
- Report suspicious HR emails to {{reportingEmail}}