Dear H + H Software and abib customers and business partners Recently, many fake emails have been circulating with the aim of tricking you into clicking on a link or opening an attachment. This is driven by massive disclosures of email addresses on the internet. This data, known as "leaks", originates from records stolen from companies like Adobe, Dropbox or LinkedIn over the past 10 years. Unfortunately, email addresses belonging to H + H Software are also affected by these leaks.

No Virus Outbreak at H + H Software Following the first phishing emails, we conducted a thorough investigation of our systems for any potential virus or trojan infection, such as Emotet, and are able to state at this moment that H + H systems are NOT INFECTED. We would like to inform you that all H + H Software systems are equipped with resident, always up-to-date antivirus protection and other multi-tiered protective mechanisms that continuously monitor the systems.

Phishing emails with a spoofed sender Unfortunately, we also found out that customers received phishing emails supposedly from H + H employees. These emails do not actually come from H + H staff. H + H Software never sends out invoices that must be opened via a download link. This type of email is essentially spoofing, where attackers spoof another identity to disguise their own and build trust with the email recipient.

Measures taken by H + H Software and abib Following these occurrences, we are now taking the following measures to maintain safe and trustworthy communication with you: From now on, H + H and abib staff will strictly send out signed emails. The digital signature is visible in email clients and you can review the signature details to verify its authenticity. Documents, such as invoices, are available only in PDF format. Please also keep in mind that launching Office macros on H + H systems is completely disabled.

Recommended action when encountering suspicious emails If you receive an email seemingly from an H + H Software employee that entails an unexpected download link or an attached document, or if the email simply looks suspicious, do not open any attachments and do not click any links. Instantly get in touch with the apparent sender from H + H Software or abib to confirm whether they actually sent this email.