Warning against phishing with imitation SSO page (“Passwort abgelaufen”) Large-scale attack on TU Braunschweig with imitation SSO login page

For a few days now, a large phishing wave has been running against the TU Braunschweig.

It seems that all email addresses that can be found on the net, including functional addresses and distribution lists, are affected, sometimes several times.

The mail claims that the password has expired and that you have to click on a link to renew it.

TU Braunschweig does not send such mails. If you are unsure, go to the password change page directly via the GITZ pages and not via a link in an email.

The sender of the mail is fake. The sender varies.

The link points to a destination outside the TU Braunschweig. This link varies.

Please also warn your colleagues!

Example of a mail:

Do not follow the link!

Under no circumstances enter data on the following fake SSO page.

Fake login page

Here is the real page for comparison: