Oops... You've Been Phished!

Last updated on March 1, 2022

You have reached this page as part of a Phishing Awareness campaign

Fortunately, this was an authorized BC Liquor Distribution Branch training exercise.

Please be aware that your device has NOT been infected and no remediation is required.

Please remember to report all suspicious e-mails to secureit@bcldb.com.

This is a training exercise.

Phished

This campaign is designed to educate employees and raise security awareness and build resilience to phishing attacks. To maintain accurate results on phishing susceptibility, we ask that you do not discuss this exercise with your colleagues. Individuals will not be identified in these reports.

Please note that:

Your device has not been compromised.
No identifying information has been collected as part of this campaign.

Please do not share this information with your peers until after the phishing awareness campaign has finished.

How could you have identified this Phish?

Why is the CRA reaching out to you at work?

Does the sender information look correct? Would the CRA use "secuirtyalert.info" to send an email?

Clues of phishing email

The sender's email address is suspicious.
- Always be extra alert for emails that original from external senders.
Hovering over the link reveals suspicious URL.
- Do not click any links in suspicious emails including "unsubscribe links".

How Can We Avoid Phishing Attacks?

A phishing attack is a method cyber-criminals use to attempt to access passwords, accounts, and data. Clicking on a link or opening an attachment in a phishing email can expose the network to harm.

Next time, ask yourself:

Who sent this to me?
Is this relevant to my work?
Does it make sense?
Am I just curious?

All employees are reminded to never interact with suspicious emails. If you receive a spam/phishing email, remember the following:

Never respond to spam/phishing emails. Delete the email. If in doubt forward the email to secureit@bcldb.com as an attachment and a team of IT Security analysts can analyze and confirm; and if necessary add security controls to prevent similar emails appearing in other users’ inbox.
Do not click on any links in the spam/phishing email including "unsubscribe" - this will most likely take you to a forged or compromised page that might attempt to install malicious code on your computer.
NEVER divulge your password to ANYONE, no matter how legitimate the request may sound.

Visit the secureIT Information Security Awareness website for more phishing tips.

SecureIT Team
Intranet Website: http://secureit/ or http://headoffice.bcldb.com/corporate/secureit/default.aspx
Email: secureIT@bcldb.com

Resources

secureIT Website (Intranet)

Phishing Infosheet (PDF)

Ransomware Infosheet (PDF)

Social Engineering Infosheet (PDF)

Contact information

secureit@bcldb.com or LOB IT Help desk

Did you find what you were looking for?

The B.C. Public Service acknowledges the territories of First Nations around B.C. and is grateful to carry out our work on these lands. We acknowledge the rights, interests, priorities, and concerns of all Indigenous Peoples - First Nations, Métis, and Inuit - respecting and acknowledging their distinct cultures, histories, rights, laws, and governments.

More topics