Follow Us
Join our newsletter
Get the latest news delivered to your inbox.
Cybercrime and Benefits Plans
May 24, 2022
According to recent estimates from the University of Maryland, there is a cyberattack every 39 seconds. Data breaches and cyberattacks are daily headlines—and employee benefits plans are no exception to that threat.
In fact, employee benefits plans are even more vulnerable as the coronavirus pandemic continues. Organizations and benefits providers are relying heavily on electronic access, ultimately creating new vulnerabilities.
The Risks
Virtually any type of employee benefits plan is vulnerable to hackers. The plans can be exposed to risks relating to privacy, security and fraud.
Retirement, savings and health plans are attractive targets for cybercriminals seeking access to plan assets and the personal information of participants and beneficiaries. Sensitive information is valuable information when it comes to cyberattacks.
Benefits plans are at risk as a result of the following factors:
- Personally identifiable information such as Social Security numbers, birthdates and email addresses have significant value to hackers. That information can be misused over a long period of time since it is permanently associated with an individual.
- Financial information, including enrollment data, account balances, direct deposit information and compensation are highly attractive. Hackers could target those online accounts to request loans, distributions and withdrawals.
- Lastly, there are multiple attack points for hackers since benefit plans are connected to several outside service providers, such as those that offer retirement plans, health insurance, vision insurance, dental insurance, short-term or long-term disability insurance, and flexible spending accounts.
Some examples of cyberthreats include phishing, malware and ransomware attacks. Lost or stolen mobile devices, laptops and flash drives that hold personal information are additional tangible threats to benefits plans.
The Consequences
Cyberattacks on benefits plans can have substantial consequences for all parties involved. Consider the following:
- Significant costs may be incurred in detecting the extent of the breach, investigating and managing the incident response, recovering compromised data and restoring overall system integrity.
- The theft of personally identifiable information and other plan assets may result in monetary losses to participants, beneficiaries, the plan, the plan sponsor and service providers.
- Organizations may experience operational disruption and reputation damage as a result of a security breach. Additional costs will be incurred to respond to and resolve either of those issues.
- Breaches of health plans may result in potential violations of the federal law that restricts release of medical information, exposing the plan sponsor and service providers to fines.
Mitigating Risks
As many employees and providers may be working from home, it’s especially important to understand cyberthreats and how to proactively protect sensitive organization and employee information. To mitigate cyber risks, consider the following measures:
- Properly monitor technology. To better protect and control data, it’s important to maintain up-to-date technology across the organization. Identify current vulnerabilities by conducting a gap analysis, penetration testing or other assessments.
- Educate employees. Start with properly training employees, especially those who are working remotely, on how to handle personnel data. This could be as simple as compiling and sharing cybersecurity tips. Think about physically protecting electronic devices and information (e.g., locking laptops and hiding information on camera) in addition to secure document storage and destruction. Pay special attention to common risks like passwords, attachments and Wi-Fi networks. Employees should always be vigilant, but may have their guards down while working from home.
- Educate participants. Similar to the points above, it’s important to educate participants about cybersecurity and different kinds of potential threats. It’s a good idea to thoroughly explore and ask questions about service providers’ security policies.
To shift cyber risks, consider the following measures:
- Review contracts. Legacy contracts don’t consider modern-day cyber risks. It’s important to review contractual arrangements to ensure vendors provide an appropriate level of protection against cyber risks.
- Obtain comprehensive insurance policies. Cyber liability insurance covers financial losses that result from data breaches and other cyber incidents. Most policies include both first-party and third-party liability coverages. It’s important to review and understand business insurance policies to understand whether additional coverage is needed.
With many employees working remotely as a result of the pandemic, plan sponsors should consider updating work-from-home policies to include cybersecurity clauses.
Other Considerations
Open enrollment season is a good time to carefully review organization and vendor security technology and policies, along with any contracts, insurance or other coverage. All parties involved should have adequate data protection strategies in place.
Always be prepared for the worst to happen. In the unfortunate event of a security breach, it’s important to be prepared with a basic communication and action plan. Even better, incorporate security breaches in an organization’s comprehensive reputation management plan. Keep in mind all internal and external audiences, and appropriate actions to protect information and restore overall system integrity. If not handled quickly and appropriately, reputational damage could be an additional threat to all parties involved in employee benefits plans.
Click here to download a pdf of the Top Tips to Avoid Cyberattacks.
To learn more about mitigating cyber risks in today’s digital world, contact SimcoHR today.
Sign up for our newsletter.
As 2025 kicks off, the HR landscape is evolving faster than ever before. Technology, shifting workforce expectations, and the need for businesses to be agile in a dynamic global environment are all driving change. What worked yesterday may not be enough today, and companies must adapt to stay ahead. Here are the top five HR trends you’ll need to watch closely in 2025: 1. AI is Changing the Hiring Game Artificial intelligence is no longer just a buzzword in HR—it’s a game-changer. Tools that can scan resumes, match candidates to roles, and even conduct initial assessments are becoming staples for businesses aiming to save time and improve hiring outcomes. In 2024, many organizations began integrating AI to remove unconscious bias and make their hiring practices more inclusive, and this trend is expected to accelerate. 2. Flexibility Isn’t Just a Perk Anymore Hybrid and remote work models are here to stay, but the conversation has shifted. In 2025, it’s less about offering flexibility and more about making it work effectively. Companies are adopting sophisticated tools for remote collaboration, redefining performance metrics, and ensuring policies address the nuances of managing both in-office and remote teams. The focus is on maintaining productivity without compromising employee well-being. 3. Wellness Goes Beyond Gym Memberships In recent years, wellness programs have evolved beyond basic offerings like gym memberships to address a wider range of employee needs. As companies recognize the link between employee well-being and productivity, they’re broadening their focus to include mental health, financial stability, and holistic support. In 2023 and 2024, for example, Delta expanded its employee wellness initiatives by improving access to mental health care. The airline worked with Spring Health, a new EAP provider, to create a larger and more diverse network of mental health professionals, offering better support for both employees and their household members. Looking ahead to 2025, wellness will become more deeply integrated into company cultures. Expect companies to go beyond providing reactive support to fostering proactive wellness through personalized tools, such as mental health apps, financial coaching, and enhanced benefits like paid leave for caregiving. With these programs, businesses are not just addressing immediate health concerns but also empowering employees to manage their overall well-being in a more holistic way. The focus will be on creating a supportive, sustainable work environment that helps employees thrive both at work and in their personal lives. 4. Upskilling is a Competitive Necessity Technology is evolving faster than ever, and companies are racing to keep up. Upskilling employees in areas like data analysis, AI, and emerging tech became a priority in 2024, and it’s clear that this trend will only grow. Businesses that invest in continuous learning programs—whether through certifications, on-the-job training, or digital learning platforms—are better positioned to stay ahead in their industries. 5. Data is Driving HR Decisions HR is leaning heavily on people analytics to guide decision-making. Instead of relying on intuition, businesses are using data to understand employee engagement, pinpoint reasons for turnover, and improve productivity. The emphasis on metrics like employee sentiment and workforce utilization gained traction last year, and more organizations are embedding analytics into their HR strategies to tackle challenges proactively. Final Thoughts The HR landscape in 2025 will be shaped by these transformative trends. Businesses that embrace innovation and prioritize their people will find themselves not just adapting but thriving in the evolving workplace. As these trends unfold, staying proactive and flexible will be the key to turning challenges into opportunities.
The IRS has released the 2025 Patient-Centered Outcomes Research Institute (PCORI) fee , which will increase to $3.47 per covered life —a $0.25 increase from 2024. This fee applies to plan years ending on or after October 1, 2024 , and before October 1, 2025 . What is the PCORI Fee? The PCORI fee was introduced as part of the Affordable Care Act (ACA) to help fund the research conducted by the Patient-Centered Outcomes Research Institute (PCORI). This research focuses on improving healthcare outcomes by comparing different medical treatments. The fee is levied on insurers, as well as self-insured and level-funded health plans. The fee is calculated based on the average number of covered lives under a plan and is due once a year, with the filing occurring during the second quarter on Form 720 , the Quarterly Federal Excise Tax Return . The payment is due by July 31 each year. Key Details for Employers and Plan Sponsors Who is Affected? : The fee applies to health insurers, self-insured health plans, and level-funded health plans. When is it Due? : The fee must be reported on Form 720 and paid by July 31 each year. How is it Calculated? : The fee is based on the average number of covered lives during the plan year. The updated $3.47 per covered life fee will be in effect for health plans with policy years ending between October 1, 2024, and October 1, 2025. Employers should be prepared to account for this increase when filing for 2025. For more information on the PCORI fee and its reporting requirements, consult the IRS Bulletin 2024-49 , published on December 2, 2024, or visit the IRS PCORI Fee page .
In a move welcomed by many employers in the hospitality and service industries, the U.S. Department of Labor (DOL) has officially reinstated the pre-2021 tip credit rule. This change, effective December 17, 2024, follows a recent court of appeals decision that vacated the “80/20/30” tip credit rule that had been implemented under the Trump administration. If you’re wondering what this means for your business, don’t worry—this update doesn’t require any immediate action on your part. What Was the "80/20/30" Rule? Before we dive into the implications of the DOL’s latest rule change, let’s quickly review the "80/20/30" rule. This rule, introduced in 2021, placed specific restrictions on how much time tipped employees (such as waitstaff and bartenders) could spend on non-tip-generating duties (e.g., cleaning, setting up, and other side work). The rule essentially required that tipped workers spend at least 80% of their work hours on tip-generating activities to continue qualifying for the tip credit. Moreover, under the "80/20/30" rule, employers could no longer use the tip credit to offset wages for certain non-tip-producing activities, and they had to ensure that employees spent no more than 30 minutes at a time on side duties. This increased the burden on employers, as it required more careful tracking of employee duties and work hours to remain in compliance. Why Was the Rule Vacated? The court of appeals decision in August 2024 ruled that the "80/20/30" rule was too restrictive and inconsistent with the intent of the Fair Labor Standards Act (FLSA), which allows employers to take a tip credit for workers who perform both tipped and non-tipped duties. The court found that the new rule created unreasonable administrative burdens and restrictions that were not in line with past practices or legal precedents. In response to this ruling, the DOL moved quickly to restore the pre-2021 tip credit rule. What Does the Reinstatement of the Pre-2021 Rule Mean for Employers? With the reinstatement of the pre-2021 tip credit rule, the DOL has effectively simplified the way employers can apply the tip credit to their workers. Under the prior rule, employees who perform a combination of tipped and non-tipped duties can still qualify for the tip credit, as long as their primary job responsibility is related to tipped work. Employers no longer have to track the precise breakdown of time spent on tip-generating vs. non-tip-generating activities in the same way. This returns to the more flexible guidelines where as long as tipped employees perform "related" duties (e.g., cleaning their station, setting up for service), they can still receive the tip credit for those hours, provided those activities don’t dominate their workday. What Action Is Needed from Employers? For most employers, this change will not require any immediate action, as the final rule effectively restores the pre-2021 approach. The main thing to note is that employers should continue to comply with the broader requirements of the Fair Labor Standards Act (FLSA) and ensure they are properly paying employees at least the federal minimum wage (including tips) when they apply the tip credit. Here are a few things to keep in mind: Reassess Timekeeping Systems: While the rule change simplifies some aspects of record-keeping, employers still need to ensure they have a timekeeping system in place that accurately tracks the hours worked by tipped employees. It is essential to ensure that the wages (base pay plus tips) equal at least the federal minimum wage. No Need for Immediate Adjustments: If you were already applying the pre-2021 tip credit rule, no changes are necessary on your part. For those who had adjusted to the "80/20/30" rule, reverting back to the previous method should not require significant changes. State and Local Laws: Employers should still be mindful of any state or local laws that may have stricter requirements than federal law. Always check your state’s labor regulations to ensure full compliance. Why Is This Change Important? The reinstatement of the simplified tip credit rule provides relief to many employers, particularly in industries like restaurants, hotels, and other service-based businesses where tipping is common. The pre-2021 rule is seen as more employer-friendly, offering more flexibility in how tipped employees can spend their time without losing eligibility for the tip credit. For employers, this means less administrative burden, reduced risk of compliance issues, and potentially fewer legal challenges. This shift is a step toward simplifying labor law compliance for businesses already struggling with the complexities of wage and hour rules. Looking Ahead As we move further into 2025, it’s important for employers to stay informed of any future changes in federal labor regulations. While this change restores a previous rule, the DOL’s stance on tip credits and wage issues can continue to evolve. Employers in tip-dependent industries should continue to monitor updates from the Department of Labor and legal rulings to ensure ongoing compliance. The DOL’s restoration of the pre-2021 tip credit rule is a welcome change for many businesses, offering a return to simpler guidelines and less restrictive requirements. For most employers, no immediate action is required, but it’s always a good idea to review your practices to ensure they align with the updated rule. If you need further assistance in navigating these changes, reach out to Simco to ensure your business stays compliant in 2025 and beyond.
Have a question? Get in touch.
Our Services.
From the Blog.
As 2025 kicks off, the HR landscape is evolving faster than ever before. Technology, shifting workforce expectations, and the need for businesses to be agile in a dynamic global environment are all driving change. What worked yesterday may not be enough today, and companies must adapt to stay ahead. Here are the top five HR trends you’ll need to watch closely in 2025: 1. AI is Changing the Hiring Game Artificial intelligence is no longer just a buzzword in HR—it’s a game-changer. Tools that can scan resumes, match candidates to roles, and even conduct initial assessments are becoming staples for businesses aiming to save time and improve hiring outcomes. In 2024, many organizations began integrating AI to remove unconscious bias and make their hiring practices more inclusive, and this trend is expected to accelerate. 2. Flexibility Isn’t Just a Perk Anymore Hybrid and remote work models are here to stay, but the conversation has shifted. In 2025, it’s less about offering flexibility and more about making it work effectively. Companies are adopting sophisticated tools for remote collaboration, redefining performance metrics, and ensuring policies address the nuances of managing both in-office and remote teams. The focus is on maintaining productivity without compromising employee well-being. 3. Wellness Goes Beyond Gym Memberships In recent years, wellness programs have evolved beyond basic offerings like gym memberships to address a wider range of employee needs. As companies recognize the link between employee well-being and productivity, they’re broadening their focus to include mental health, financial stability, and holistic support. In 2023 and 2024, for example, Delta expanded its employee wellness initiatives by improving access to mental health care. The airline worked with Spring Health, a new EAP provider, to create a larger and more diverse network of mental health professionals, offering better support for both employees and their household members. Looking ahead to 2025, wellness will become more deeply integrated into company cultures. Expect companies to go beyond providing reactive support to fostering proactive wellness through personalized tools, such as mental health apps, financial coaching, and enhanced benefits like paid leave for caregiving. With these programs, businesses are not just addressing immediate health concerns but also empowering employees to manage their overall well-being in a more holistic way. The focus will be on creating a supportive, sustainable work environment that helps employees thrive both at work and in their personal lives. 4. Upskilling is a Competitive Necessity Technology is evolving faster than ever, and companies are racing to keep up. Upskilling employees in areas like data analysis, AI, and emerging tech became a priority in 2024, and it’s clear that this trend will only grow. Businesses that invest in continuous learning programs—whether through certifications, on-the-job training, or digital learning platforms—are better positioned to stay ahead in their industries. 5. Data is Driving HR Decisions HR is leaning heavily on people analytics to guide decision-making. Instead of relying on intuition, businesses are using data to understand employee engagement, pinpoint reasons for turnover, and improve productivity. The emphasis on metrics like employee sentiment and workforce utilization gained traction last year, and more organizations are embedding analytics into their HR strategies to tackle challenges proactively. Final Thoughts The HR landscape in 2025 will be shaped by these transformative trends. Businesses that embrace innovation and prioritize their people will find themselves not just adapting but thriving in the evolving workplace. As these trends unfold, staying proactive and flexible will be the key to turning challenges into opportunities.
The IRS has released the 2025 Patient-Centered Outcomes Research Institute (PCORI) fee , which will increase to $3.47 per covered life —a $0.25 increase from 2024. This fee applies to plan years ending on or after October 1, 2024 , and before October 1, 2025 . What is the PCORI Fee? The PCORI fee was introduced as part of the Affordable Care Act (ACA) to help fund the research conducted by the Patient-Centered Outcomes Research Institute (PCORI). This research focuses on improving healthcare outcomes by comparing different medical treatments. The fee is levied on insurers, as well as self-insured and level-funded health plans. The fee is calculated based on the average number of covered lives under a plan and is due once a year, with the filing occurring during the second quarter on Form 720 , the Quarterly Federal Excise Tax Return . The payment is due by July 31 each year. Key Details for Employers and Plan Sponsors Who is Affected? : The fee applies to health insurers, self-insured health plans, and level-funded health plans. When is it Due? : The fee must be reported on Form 720 and paid by July 31 each year. How is it Calculated? : The fee is based on the average number of covered lives during the plan year. The updated $3.47 per covered life fee will be in effect for health plans with policy years ending between October 1, 2024, and October 1, 2025. Employers should be prepared to account for this increase when filing for 2025. For more information on the PCORI fee and its reporting requirements, consult the IRS Bulletin 2024-49 , published on December 2, 2024, or visit the IRS PCORI Fee page .
Our Company.
Sign up for our Newsletter.
Designed and Developed by Vessel Digital Marketing