As part of the University of Calgary’s phishing education program ALL faculty and staff will receive at least one test phishing email over a six-month period. During this trial period, if a test phish is acted upon, users should expect the following to occur:
- If the first test phish email is acted upon, an educational pop-up alert will appear informing the faculty or staff member that this is a test phish and provide helpful advice to avoid acting upon future suspicious emails.
- If a second test phish email is acted upon, the faculty or staff member will receive a phone call from an IT representative reinforcing phishing education.
- If a third test phish email is acted upon, the appropriate senior leader will be notified with the expectation the faculty or staff member’s supervisor or designate will follow up to discuss the risks of phishing attacks to the university. Resources to assist in the follow-up conversation will be circulated to all senior leaders at a future date.
The phishing education program has gone through thorough privacy and ethics reviews. We will ensure that the privacy of any individuals who click on the links is protected.
What to do if you receive a phishing email?
If you open an email that appears to be suspicious, even if from a trusted source, do not click on any embedded links or attachments. Instead, include the email as an attachment in a new email, send to firstname.lastname@example.org and then delete the email.
What to do if you click on an email link in a suspicious email?
Immediately stop using your computer and contact the IT Support Centre at 403-220-5555 and a representative will assist you.
Contact the IT Support Centre (email@example.com or 403-220-5555) if you have questions.