On this page, you will find guidance on how to recognise official HTW Berlin communications, check suspicious messages and protect your HTW account.

HTW Berlin – University of Applied Sciences uses several official domains, subdomains and short links in addition to its main website.

These include in particular:

• *.htw-berlin.de
• htwb.de
• htw.berlin

Please always check web addresses carefully when opening links or accessing login pages. In particular, make sure that the address is spelled correctly and does not contain any additional or unusual characters.

Phishing emails attempt to steal personal information or login credentials. Attackers often pretend to represent universities, companies or well-known online services.

Typical warning signs include:

• Requests to enter or share passwords
• Messages creating a sense of urgency or using threats (“act immediately”, “your account will be blocked”)
• Unknown or unusual sender addresses
• Suspicious or slightly altered web addresses
• Unexpected attachments or links
• Spelling mistakes or unusual language

Common examples in a university context include:

• “Your account will be deactivated.”
• “Mailbox storage almost full.”
• “New security policy – sign in immediately.”

• Use a strong, unique password.
• Never share your password with anyone.
• Only sign in on official HTW Berlin websites.
• Do not open suspicious attachments or links.

• Move your mouse pointer over a link without clicking it.
• In most cases, your browser or email application will display the actual destination of the link.
• Check whether the displayed address belongs to HTW Berlin and is spelled correctly.
• Be particularly cautious if the displayed link does not match the expected website or contains unusual domains.
• On mobile devices such as smartphones or tablets, this preview is often not available. You should therefore check links especially carefully on mobile devices.

If an email or message appears suspicious:

• Do not click on links.
• Do not open attachments.
• Do not enter any login credentials.
• Carefully check the sender address and message content.

If in doubt, it is always better to ask for clarification.

If you have clicked on a suspicious link or entered your login credentials:

• Change your HTW password immediately via the account portal.
• Inform the IT Help Centre and/or Information Security.
• Check your device for possible malware.

The faster action is taken, the better potential damage can be limited.

If a message appears suspicious:

• Do not click on links.
• Do not open attachments.
• Do not enter any login credentials.
• Forward the email for review.