Skip to main content

Threats conveyed to KTH via email and social media

Threats that arrive via email and social media can be aimed at an employee, a school or KTH as a government agency. The primary task is to confirm the source, assess the risk, evaluate the threat level and conduct a simple impact assessment analysis. School-specific descriptions may exist and be applied in addition to those set out here.

General action

Counteract the spreading of rumours

  • Do not pass on information, other than to your line manager. False rumours can cause insecurity and fear, which is actually often the purpose.
  • If possible, reduce the risk of dissemination by hiding the message.
  • It is not just the person who published the threat who is committing a crime. Anyone who passes it on also risks doing the same.

Secure evidence and traceability

  • Through social media
    • Take a screenshot or copy of the message/page and save it digitally for further investigation.
  • By email
    • Take a copy of the email header and save it digitally for further investigation.

Instructions: intra.kth.se/it/e-post-kalender/epost/spam-phishing

Reporting to the police

  • If a threat is directed at an employee, the employee decides whether to report the threat to the police, as the employee takes on the role of plaintiff and subject of the case in respect of the police.
  • Threats directed at KTH centrally must always be reported to the police and addressed with KTH:s Head of Security.

Specific handling, risk assessment and evaluation

Employee on duty

  • Threats that concern an employee on duty and are associated with KTH must be addressed with the line manager, and you jointly evaluate the content and risk value of the threat. All threats are reported to KTH as incidents, and if a threat is of a serious nature it must be reported to the Swedish Work Environment Authority and the police.
    Please continue reading: Reporting incidents, risks and occupational injuries

School

  • Threats targeted at a school are referred to the line manager. The threat is addressed within the school, school management evaluates the content and defines the risk value of the threat. School management decides whether the threat is to be escalated and addressed with KTRH centrally (GVS) and KTH’s Head of Security. The Head of Security also assesses whether the threat should be escalated to the Crisis Management Group.

KTH centrally (GVS)

  • Threats that are received at GVS are passed to the line manager. The line manager escalates the threat to the department manager, who evaluates the content and defines the risk value of the threat. The department manager decides whether the threat should be escalated and addressed with KTH’s Head of Security. The Head of Security assesses whether the threat should be escalated to KTH’s Crisis Management Group.

Crisis Management Group

  • The Head of Security collaborates with the Crisis Management Group and any parties concerned by and necessary for the threat. The Crisis Management Group decides on action to be taken, which information is to be communicated within KTH and when.
Did you find this page useful?
Thank you for helping us!
Page responsible:sakerhet@kth.se
Belongs to: KTH Intranet
Last changed: Aug 26, 2021