An increased number of phishing emails are currently being sent to many members of the University of Münster. 

The emails have the subject 'Sicherheitsbenachrichtigung:' followed by your username and claim that a notification regarding task evaluation needs to be viewed. The sender is spoofed as 'it-uni-muenster.de'. This is just a ruse to lure recipients into visiting the malicious website. The included link directs users to an external webpage that convincingly mimics the University of Münster's login page. Any entered login credentials are then forwarded to the attackers.
 
Do not open any attachments or links in the mentioned emails, and do not reply to them. You no longer need to report this phishing email to CERT as appropriate countermeasures have been taken. Please delete it from your inbox.

If you have received such an email and have opened an attachment or link in it, please contact CERT (Computer Emergency Response Team) of the University of Münster immediately: cert@uni-muenster.de

What is 'phishing'?
Cyber attacks often begin with an email designed to 'fish' for an d collect sensitive information. Phishing emails often look very similar to legitimate emails. Here you can find information on the dangers, methods of distribution and criminal backgrounds of phishing. With our eight-point checklist 'How to detect scam emails', you can independently determine whether an email is a phishing attempt.

How to handle suspicious emails at the University of Münster
If you receive a suspicious email referring to the University of Münster (e.g. fake email addresses using uni-muenster.de or wwu.de, links to login pages that imitate the corporate design of the University of Münster, identity theft of University employees etc.), please inform CERT (Computer Emergency Response Team) of the University of Münster immediately. Forward the suspicious email as an attachment ("Forward as attachment" in Outlook or by using the key combination Ctrl + Alt + F) to spam@uni-muenster.de