🚨 Warning – You have fallen victim to a phishing training email
This message was not a real attack, but part of our internal security training.
Our goal: To show you how easy it is to react to deceptively authentic emails – and how you can better protect yourself in the future.
How you could have recognized the phishing attempt
- Pressure through time limits
“Immediately, within 24 hours” – attackers use time pressure to make you act quickly. - Request to enter login details
Reputable IT departments never ask for passwords via email.- Link in text:
The displayed link appears official, but may redirect to a different address.
- Link in text:
-
- General sender / IT support without a direct contact person
- Genuine internal emails are usually personalized and contain a clear direct dial number.
- Never start a downloadlink directly from an email whose authenticity you cannot absolutely guarantee.
If possible, always start a download directly from the provider'swebsite. - In particular, never open files attached to a suspicious email.
What you should do in the future
- Check carefully: sender's address, spelling, link target (display with mouse pointer without clicking).
- Do not click if you have any doubts.
- Do not process, open, or click on suspicious emails.
- Check if your antivirus programs are up to date: check the green checkmark on the Defender icon in the taskbar
💡 Remember:
"Phishing is often not recognizable at first glance – but always at second glance."
Thank you for your attention!
Every click in this exercise is an opportunity to improve our collective safety.