Phishing scams that infect home computers and potentially allow hackers to invade bank and other accounts are preventable, but White Rock IT manager Chris Zota recommends computer users arm themselves with information and awareness. (AP Photo/Jenny Kane).

Refund emails from City of White Rock a ‘phishing’ scam

IT staff work to nullify security breach in ‘classic phishing campaign’

The City of White Rock is warning residents not to open an email sent to home accounts referring to a refund.

The email – purportedly from a city financial services account – is a ‘phishing’ scam, first revealed to the public in a post Wednesday on the city’s Facebook page, and on the city website. The city’s information technology staff were already at work to nullify impact of the false message as of Wednesday morning, the post noted.

‘Phishing’ is typically used to gather personal credentials of email users and can potentially be used by hackers to invade banking and other accounts.

Corporate administration director Tracey Arthur told Peace Arch News the fraudulent emails came to the city’s attention early Wednesday morning but no information on file with the city was compromised.

Responding to questions by email, city IT manager Chris Zota said that approximately 2,700 email messages had been sent out by the time the security breach was detected.

“We temporarily closed the affected user account, changed credentials, set up the user to use multi-factor authentication, investigated the breach (reviewed logs and settings), (and) reminded the user to employ proper cyber hygiene (using different passwords for different accounts),” Zota said.

He said, however, that no purpose would be served by attempting to assign blame for the breach, noting that “clever social engineering methods are employed to craft phishing campaigns designed to steal user credentials,” and that “this was a classic phishing campaign.”

“It’s important not to jump to any conclusions here to the effect that the user did something wrong,” he said. “We don’t know how these credentials were compromised.”

The best policy for the public is to “follow cyber best practices, awareness and education on the topic of cyber security,” Zota said.

“While employing the use of a good anti-malware software helps, I can’t stress enough the importance of education and awareness.”

He said a “simple yet effective overview of phishing” can be found online at phishing.org.

People can use also the site https://haveibeenpwned.com/ to see if their email accounts have been compromised, Zota suggested.

Get local stories you won't find anywhere else right to your inbox.
Sign up here

Just Posted

UPDATED: COVID-19 outbreak declared at Peace Arch Hospital

Provincial health officer says outbreak is in the facility’s rehab unit

Surrey wrestler Jason Bains receives four-year suspension for using banned substance

Queen Elizabeth Secondary grad tests positive for steroid Turinabol, silver national medal removed

COVID-19 exposures reported at four more Surrey schools

Fraser Health has created a new webpage listing COVID-19 cases in schools

Cops find $50K bagged cash in sport car after traffic stop in Surrey

‘Seizures like this help reinforce the importance of continued pro-active traffic enforcement’: RCMP

What happens when someone tests positive for COVID-19 at a Surrey school?

Surrey Schools Superintendent explains step-by-step process for notifying the community

Record-breaking 165 new COVID-19 cases diagnosed in B.C. in 24-hour period

Fifty-seven people are in hospital battling the novel coronavirus

Report raises questions about COVID outbreak that killed 25 seniors at Langley Lodge

CEO defends leaked document that’s igniting queries about BC’s most deadly COVID outbreak

PHOTO: RCMP escort beaver across busy Chilliwack road

Motorists had to exercise patience as the slow-moving creature crossed several lanes of traffic

March to protect old growth, stop industrial logging coming to B.C. Legislature

Organizers say they want to give frontline communities a bigger say in nearby logging

B.C. releases details of $1.5B economic recovery plan, $660M in business tax incentives

Economic plan includes support for employers, as well as training for workers

‘Not criminally responsible’ hearing slated for man convicted of Abbotsford school stabbing

Gabriel Klein was found guilty in March of killing Letisha Reimer, 13, in 2016

Man arrested in New Westminster pier park fire

Investigators don’t believe the public are at further risk and are not looking for any other suspects

Most Read