CanadaOne Auto
Coming from Google SecurityMicrosoft SecuritySecurity & Account4 min

Staying Secure

Security Awareness

Phishing Detection Challenge

You'll see 4 emails. For each one, decide: is it a real email or a phishing attempt? Learn to spot the red flags that protect you and customer data.

Urgent language

Creates panic to rush you

Wrong sender

Fake or misspelled domains

Asks for passwords

IT never asks via email

Suspicious links

Hover before you click

Interactive - Spot the phishing emails

What's Changing

The security tools behind the scenes are upgrading to Microsoft's enterprise security platform. For you, the day-to-day doesn't change much, but there are a few things you should know to keep your account (and the dealership's data) safe.

What Stays the Same

  • The rules - don't click suspicious links, don't share your password, report anything weird
  • Common sense applies - if an email looks off, it probably is
  • IT has your back - the security team monitors for threats so you don't have to

Spotting Phishing Emails

Phishing emails are fake emails that try to trick you into giving up your password or clicking a dangerous link. They're the #1 security threat for any business.

Red Flags to Watch For

  • Urgent language: "Your account will be locked in 24 hours!"
  • Unexpected attachments from people you don't know
  • Slightly wrong email addresses: support@microsooft.com (notice the double 'o')
  • Requests for your password - Microsoft (and your IT team) will NEVER ask for your password via email
  • Links that don't match - hover over a link before clicking. If it says "microsoft.com" but the actual URL goes somewhere else, don't click

What to Do If You Get a Suspicious Email

  1. Don't click any links in the email
  2. Don't open any attachments
  3. Don't reply to the email
  4. Click the Report button in Outlook (if available) or forward the email to your IT contact
  5. Delete the email

What to Do If You Accidentally Clicked

Don't panic. Just:

  1. Change your password immediately at portal.office.com
  2. Tell your IT contact right away
  3. They'll check your account and make sure everything is secure

Password Best Practices

  • Use a strong, unique password for your work account
  • Don't reuse passwords from personal accounts
  • Never share your password with anyone, including people who say they're from IT
  • If you think your password has been compromised, change it immediately and contact your IT team

Working Securely at the Dealership

On Shared Computers

  • Always sign out when you're done using a shared computer
  • Don't save your password in the browser on shared machines
  • Lock your screen when you step away (press Windows + L)

On Your Personal Devices

  • Keep your phone locked with a PIN, fingerprint, or face ID
  • Keep apps updated - Microsoft pushes security updates regularly
  • Don't connect to unknown Wi-Fi without checking with IT

With Customer Information

  • Never email customer financial information (credit card numbers, SIN, etc.)
  • Use encrypted channels for sensitive documents
  • Don't store customer data on personal devices or personal cloud accounts
  • Follow your dealership's privacy policies - when in doubt, ask your manager

Tips for Dealership Staff

  • MFA is your best friend - it protects your account even if your password is stolen
  • When in doubt, don't click - it's always safer to check with IT first
  • Your IT team is there to help, not judge - if you click something suspicious, reporting it quickly is the best response
  • Updates are important - when your computer asks to update, do it. Those updates include security fixes

Need Help?

If you suspect a security issue:

  1. Report it immediately - don't wait
  2. Contact your dealership IT contact
  3. Email the CanadaOne IT team at it@canadaoneauto.com

Previous

Your New Sign-In & MFA

Next

Calendar Delegation