The Canadian Securities Administrators (CSA) issued an alert to registrants about an impersonation scam involving emails falsely claiming to be sent on behalf of the CSA. The messages are believed to be malicious spear phishing attempts designed to obtain personal information or confidential business information using publicly available details about recipients. The CSA said the emails originate from a domain that is not associated with the CSA or any of its member organizations and should be treated with extreme caution. Recipients are advised to delete the email, report it to their local securities regulator, and apply basic verification checks such as confirming the email address and sender identity and whether the message was expected; those who clicked a link or opened an attachment should immediately change passwords and notify their security department.
Canadian Securities Administrators 2026-01-23
Canadian Securities Administrators warn registrants about spear phishing emails impersonating the CSA
The Canadian Securities Administrators (CSA) issued an alert regarding a spear phishing scam involving emails impersonating the CSA to obtain personal or confidential business information. Recipients are advised to delete such emails, report them to local securities regulators, and verify sender details.