Oops... You've Been Phished!

You have reached this page as part of a Phishing Awareness campaign

Please note that:

  • There is no need to report this email to the IT Department.
  • Your computer has not been compromised.
  • No identifying information has been collected as part of this campaign.

Please do not share this information with your peers until after the phishing awareness campaign has finished.


Unfortunately, you have reached this page because you were the successful target of a phishing attack.  Please be aware that your computer has NOT been infected and no remediation is required.

A phishing attack is a method cybercriminals use to attempt to access municipal passwords, accounts, and data. Clicking on a link or opening an attachment in a phishing email can expose the network to harm.

Next time, ask yourself:

  • Who sent this to me?
  • Is this relevant to my work?
  • Does it make sense?
  • Am I just curious?

This exercise is part of an internal phishing campaign initiated by the Information Technology department in collaboration with the Office of the Chief Information Officer (OCIO). This campaign is designed to educate employees and raise security awareness within the B.C. Government. To maintain accurate results on phishing susceptibility, we ask that you do not discuss this exercise with your colleagues. The results concluding from this exercise will be shared with all staff during upcoming training at all sites. Individuals will not be identified in these reports.

If you reached this page, you overlooked several common signs of a phishing email. Click on the below image to review an example phishing email and learn more.

Image of Phishing Example


Learn how to better identify phishing attacks by watching the below video.

All B.C. Government employees are reminded to never interact with suspicious emails. If you receive a spam/phishing email, remember the following:

  • Never respond to spam/phishing emails. Delete the email.
  • Do not click on "unsubscribe" in a spam/phishing email - this lets the spammers know they have hit a "live" address and you will get more email of this type.
  • Do not click on any links in the spam/phishing email - this will most likely take you to a forged or compromised page that might attempt to install malicious code on your computer.
  • NEVER divulge your password to ANYONE, no matter how legitimate the request may sound.

If you receive a spam/phishing email that appears to come from a government source, if the email is threatening, or if you have clicked on a link and/or provided your IDIR password, you need to report it as a Security Incident by calling the Shared Services BC Service Desk at (250) 387-7000 or toll-free at 1-866-660-0811 (available 24 hours a day), and selecting option 3.

Visit the Information Security Awareness website for more phishing tips.