Phishing emails stealing logins and credit card data

Phishing is a serious digital security threat, which causes billions of dollars in damages every year. It’s a risk that both everyday users and companies should not underestimate.

There are currently phishing emails circulating in the name of Hetzner.

You can recognise these emails by the following features:

Sense of urgency:

Be careful about any emails with subject lines that ask you to do something urgently, for example, subject likes, “Last reminder: accept the new data protection policies”, “Urgent: renew your domain xyz or it will be locked”, or “Your contract will end soon”.

Fake sender:

Look out for emails with fake sender names like “HETZNER”, “HetznerSupportTeam”, “Hetzner Online GmbH”. The sender is also fake if the email address does not end with “@hetzner.com”.

Links that look real:

In the email texts, there are links that look real at first, but that will take you to fake Hetzner login pages. These fake login pages will try to get you to enter your Hetzner login details or your credit card details so they can steal them.

If you think an email is fake, do NOT open the email at all. And if you accidentally do open the email, do NOT click on any links. If you get an email like this, delete it immediately.

If you already entered your username and/or password on site that you think was fake, you should immediately change your Hetzner password at https://accounts.hetzner.com.

To better protect your account against hackers, we strongly recommend that you activate two-factor authentication (2FA) for your Hetzner Account: https://docs.hetzner.com/accounts-panel/accounts/two-factor-authentication/

Please do not call our telephone support about phishing-related issues. Instead, write to us at support@hetzner.com.

You can see a collection of phishing emails that we know about here: https://docs.hetzner.com/general/others/phishing-email-collection