FOR IMMEDIATE RELEASE
June 17th, 2026
NAPE Outraged by NLHS Phishing Exercise Targeting Healthcare Workers
St. John’s, NL — The Newfoundland and Labrador Association of Public and Private Employees (NAPE) is outraged by the phishing exercise sent to healthcare workers by Newfoundland and Labrador Health Services (NLHS) on June 16, 2026.
NLHS facilitated the distribution of a phishing email titled “June Holiday“ to healthcare staff about their work during the CorCare transition stating, “in recognition of that contribution, all employees will receive one additional paid day off.” The email was designed to test employees by tracking whether they would click on the embedded link to register for it.
“I am absolutely disgusted that NLHS would do this to our hardworking healthcare staff,” said NAPE President Jerry Earle. “Our members deserve better than to be taunted with the promise of a day off after the incredible amount of work and sacrifice they made to get CorCare up and running. Many members were denied vacation, worked countless extra hours, and spent time away from their families and loved ones during the CorCare launch. To use those sacrifices as the basis for a phishing test is nothing short of cruel.”
NAPE became aware of the email late yesterday afternoon after members began contacting the Union to verify whether the message was legitimate. It was then confirmed that the email originated from NLHS as part of an internal cybersecurity exercise.
“Treating employees this way is unacceptable,” Earle continued. “Everyone understands the importance of cybersecurity, however, there are appropriate ways to conduct these exercises, and this was not one of them. Exploiting the hard work and the goodwill of healthcare workers to test cybersecurity awareness crossed a major line.”
The phishing exercise comes at a time when many healthcare workers are still feeling the effects of the CorCare implementation. Morale is already strained because of understaffing, increased workloads and the challenges associated with such a major transition. Rather than recognizing what workers have put in and what they’re still going through the NLHS chose to use the belief their employer would appreciate that work as the basis for their test.
NAPE is calling on NLHS to immediately apologize to all employees who received the email. This has caused such unnecessary stress and upset amongst staff that the people responsible for this should be immediately removed from their positions.
“If one of our members did something as cruel as this, they would be out of a job today. Our healthcare workers have given so much to support patients and the healthcare system through one of the most challenging transitions in recent memory,” said Earle. “They deserve appreciation and respect, not to be used as a tool for a cybersecurity exercise. The NLHS should be focused on rebuilding trust and improving morale, this exercise accomplished the exact opposite, and we will do whatever we need to do to ensure this is dealt with.”
-30-
Recent Comments