Malware often spreads via email attachments, files through messenger programs like WhatsApp or active content in web pages.

  • Be always suspicious when you receive unexpected emails and do not open email attachments. Attachments with double file extensions such as "test.pdf.exe" contains malicious code most likely.
  • Not click contained links. Go with the mouse over the link (do NOT CLICK!) and check that the displayed link matches with real url. We will never require to go on web pages outside of our domain uni-Weimar.de to enter there sensitive data. By clicking of links it is always possible that you get infected with malware.
  • Most email programs have the possibility to manage incoming emails and to foward and save them in different email folders. So it is possible to redirect emails from known users in existing folders. With such a configuration, you will only have a manageable number of mails in your default receive Folder that can be edited with appropriate caution.
  • The forging of email addresses is possible without much effort. The display name of the sender has no reliability. If you get an email from a known person, that contains an exotic subject, caution is still advised. Ask in case of doubt the (alleged) sender.
  • Don't answer any unsolicited email, also not to cancel the reception.
  • Turn off the automatic opening and viewing of email attachments in your email program.
  • Be suspicious when emails ask you to install a software or to send or enter sensitive data somewhere.
  • Disable the HTML view and use instead the plain text view if possible.
  • Check all files downloaded to your computer before opening with a malware protection.
  • Be suspicious on web pages that ask you to install Software. Do not click on any pop-up window.
  • Turn off automatic opening of active content in the web browser or restrict it.

General advice from the BSI:

In emails even from supposedly known or trusted senders check whether the text of the message fits to the Sender (English text from German partner, dubious text or missing reference to actual operations etc.) and whether the attachment was also expected.

The BSI recommends to arrange the sending / receiving of executable programs (extend .COM. EXE. BAT,...) or other files, which can contain program code (extend. DO;. XL *, PPT, VBS...) previously. This is hedged, that the file from the specified sender is sent and not spread by a Virus.
(source: BSI)