Versions :<1234567Live

Canada: NL Health's Fake Day-Off Email Was a Phishing Test

Was this an unforgivable betrayal of burned-out workers or a flawed but fixable cybersecurity necessity?
Canada: NL Health's Fake Day-Off Email Was a Phishing Test
Above: A spam "phishing" email is displayed on a laptop screen. Image credit: Peter Dazeley/Getty Images

The Spin


Government-critical narrative

NL Health's phishing test — which dangled a fake paid day off to exhausted health care workers — was a massive failure of judgment. Staff who sacrificed vacation time and family life during the chaotic CorCare rollout deserved real recognition, not a cruel bait-and-switch. Genuine appreciation means something, but exploiting burnout to run a cybersecurity drill is a complete insult. There must be accountability for this.

Pro-government narrative

NL Health's phishing test was a misstep, but the organization owned it fast — the interim CEO publicly apologized, called the approach inappropriate and promised a full review. Cybersecurity awareness is critical in health care, where attacks can cancel procedures and cost lives. One poorly designed drill doesn't erase the genuine need for these exercises. The real fix is better oversight, not abandoning the practice altogether.


Go Deeper

© 2026 Improve the News Foundation. All rights reserved.Version 7.4.1

© 2026 Improve the News Foundation.

All rights reserved.

Version 7.4.1