Incredible hard to find. I've been going around in circles on their site. I think Shaw doesn't want to know.

@jmwilkerson 

https://support.shaw.ca/t5/internet-articles/recent-fraudulent-messages-and-phishing-attempts/ta-p/6...

@rstra -- I was just told, via online chat, that internet.abuse@sjrb.ca is "only for internal use", and that I must use reportspam@shaw.ca.

About 3 days after trying to send to the former ID, I get a "connection refused" and "message too old" response.

I receive  "Shaw Bill" phishing regularly from various email address' .I always report them to reportspam@shaw.ca but I never receive a response from Shaw. This month's phishing email appeared to be from no_replybill@telus.com, as this address was a local provider and Shaw's main competition i forwarded it to  Shaws spam reporting address and a few days later contacted Customer Service by "chat"  to ask why Shaw does not respond.

After the usual delays caused by having to provide 5 different forms of ID for "security purposes" and in getting the Shaw associate to communicate in understandable English I was told that Shaw receive many complaints regarding phishing and cannot respond to all of them.

I replied that PayPal also receive many phishing complaints and they have the courtesy to respond to every one. I commented that Shaw appears to take security very seriously when logging into chat, but doesnt seem at all concerned that fraud is being committed due to its own lack of email security. I then asked what action Shaw would take, especially since this email came from a Telus account. 

This appeared to confuse the associate, the quality and grammar of his reply did not fill me with confidence. I suspect that Shaw does not care that phishing is perpetrated in its name and they consider that the responsibility for identifying phishing emails is their customers not theirs.

@smithav -- especially since this email came from a Telus account

Check the E-mail headers. Just as easily as you have configured your E-mail program to use the correct values into the "first-name-last-name" field, and into the E-mail ID field, spammers can insert "spoofed" values, as part of their effort to try to trick you into accepting that the E-mail has originated from a TELUS ID.

Never place 100% trust in the values in the "FROM:" field.

Aren't you rather missing the point here? This is a discussion about Shaw's lack of concern regarding phishing.  I'm well aware that email addresses can be spoofed, and perhaps I should have said "appears to have come from". But why would a phisher spoof an address to show that an email, which is supposed to be coming from Shaw, is coming from Telus?