This content is only partially available in English.

Information about the cyberattack

IT systems completely shut down as a security precaution

Mainz University of Applied Sciences has been the target of a cyberattack, according to current assessments. For security reasons, the IT systems were shut down completely and at short notice on Monday, November 24, 2025, following initial suspicions. Most of the university's services are therefore currently unavailable.

Hotline

Monday to Friday | 9:00 a.m. to 5:00 p.m.

06131 628-2000

FAQ

Frequently Asked Questions Regarding the Cyber Attack at Mainz University of Applied Sciences

The current situation is challenging for all of us, and we know that many questions remain unanswered. We are working to provide you with clear and timely information. The crisis management team "Cyber Attack" is being led by Chancellor Jens Egler.

Below you will find our FAQs, which we will continuously update and expand.

General Information

The university uses the Mainz Campus2Go app as a central, internal information channel to provide all updates transparently, bundled, and accessible at any time. The university management also reserves the right to convene a general assembly if necessary.

 

We cannot make a statement about this at this time.

 

No, all e-mail addresses ending in hs-mainz.de are affected. Incoming messages are delivered, but they cannot be read or processed by employees and lecturers. No automatic confirmation of receipt is sent, and no out-of-office notices are issued. E-mails are among the IT systems that have been shut down for security reasons.

 

Yes, shorter and resolvable outages of media and tools such as the university website or the telephone system may occur in the coming days, as these are integrated into the affected systems.

 

The university has set up a hotline: 06131-628-2000

 

Regulations on Work & Task Performance

Discuss with your supervisor which activities can currently be carried out under the given restrictions (e.g., without access to e-mail).

 

If your supervisor concludes that no meaningful activities can currently be carried out, you should reduce overtime hours within the scope of possibilities.

 

Supervisors must actively maintain contact with their employees. It must be ensured that all areas of the organization are continuously reachable, even if the usual communication channels are disrupted. When deciding on the assignment of tasks, supervisors should check whether employees can take on tasks that support other organizational units of the University for Applied Sciences.

 

Basically yes. Please coordinate this with your supervisors.

 

Time recording is still possible on the devices on site. Please also note down your times for security.

 

Teaching & Study

Yes, teaching is taking place as usual in person.

 

Devices, IT Usage, and Data Security

It must be assumed that all university-owned Windows devices operated by the ZIK (Central IT Department) could be affected.

  • These devices may only be used offline – inside and outside the University for Applied Sciences.
  • A handover regulation for Windows end devices for employees has been communicated in Update 11 via Campus2Go.
  • Please do not copy any more data to drives, mobile hard drives, or USB sticks.
  • The devices must be handed in to the ZIK. Please coordinate this with your supervisors or department management.
  • The ZIK checks the devices; the data on them is secured, not deleted.
  • Self-administered Windows and Macintosh devices are not affected according to current knowledge.
 
  • According to the current status, self-administered Windows and Macintosh devices are not affected.
  • University-owned Windows devices could be affected and may therefore only be used offline (!) (no LAN either).
  • Whether private devices could be impaired is currently being checked.
 

This is currently being investigated.

 

Uploading documents to cloud solutions from an affected device does not pose a security risk according to the current status. However, data exchange via USB sticks remains strictly prohibited.
There is also no indication that the malware has jumped to other devices on the same network (e.g., in the home network).

 

Passwords, Data & Security

It can be assumed that passwords that you entered or saved on affected devices administered by the ZIK have been leaked. The attackers had access using remote maintenance software and a keylogger. Please change all private and professional passwords that you used on these devices as a precaution.

For self-administered devices, the university recommends the analysis software Malwarebytes to identify problems.

 

According to current knowledge, the data is safe. We are not currently assuming data loss.

 

This is currently being checked.

 

Be vigilant about possible copycats who might try to profit from the situation (e.g., offers to buy back supposedly leaked data).
Do not respond to demands, do not open attachments or links.

Instead, contact the hotline immediately at 06131 628-2000.

 

Communication & Accessibility

The telephone system is active on campus. Outside, please use mobile phones.

 

No, all e-mail addresses ending in hs-mainz.de are affected. Incoming messages are delivered, but they cannot be read or processed by employees and lecturers. No automatic confirmation of receipt is sent, and no out-of-office notices are issued. E-mails are among the IT systems that have been shut down for security reasons.

 

We have set up a hotline: 06131-628-2000

 

Library

Yes, the library is open:

  • Monday–Wednesday | 09:00 – 16:00
  • Thursday | 09:00 – 18:00
  • Friday | 09:00 – 16:00

Special opening:
Saturday, 13.12.2025 | 10:00 – 14:00

  • OPAC is reachable, and research and renewals are possible.
  • The electronic resources are unfortunately not accessible (databases, eBooks).
  • Media can still be borrowed and returned.
  • For further questions, please contact the library directly.
    Tel: 06131-628-6220