PHISHCA
Cybercriminals routinely target Canadians with phishing lures -- often via text messages (also known as "smishing") -- impersonating financial institutions, government entities, telecommunications and other companies. Their goal is to steal banking or credit card data as well as other personal identification information in order to perpetrate fraud or sell this data to other fraudsters.

PHISHCA identifies and analyzes phishing threats targeting Canadians.

BLOG
Canada Post SMS Phishing Campaign

Feb 15, 2024

phish sms canadapost

We received an SMS purporting to be from Canada Post indicating that a signature is needed for a parcel to be released. The SMS contains a fake tracking number and a link that can supposedly be used to reschedule a delivery. The word "shedule" is not spelled correctly in the domain name -- which seems to be fairly common with these types of scams.
Phishing SMS spoofing Canada Post

Feb 08, 2024

phish sms canadapost

We observed an SMS phishing campaign spoofing Canada Post. The text itself does not mention Canada Post specifically, but references  a "tracking notice" and requests the recipient to update their information. The link in the text itself is interesting because it is a direct link to an IP address (as opposed to a domain) but the IP address is represented as a decimal (rather than a normal IP format), most likely in an attempt to bypass some security controls.
Phishing SMS Impersonating Bell Canada

Jan 30, 2024

phish sms bell

We received a phishing SMS spoofing Bell Canada indicating that there was a billing issue. The fraudsters clumsily append an "https" to the domain and misspelled "network" but it might be good enough to fool some recipients.
Phish URL Date
https://cpreshedule.com/ 2024-02-14
https://residential-shipment.info/ 2024-01-31
https://https-bellnetwrkssl1.info/ 2024-01-30