How to Report an Incident

All information security incidents (including those only involving paper records) must be reported promptly to the IT Service Desk:

Red-telephone-1

029 225 11111                    e-mail-icon 3   IT-ServiceDesk@cardiff.ac.uk

When to report an information security incident

An information security incident occurs where the confidentiality, integrity or availability of an information asset is compromised. It can include any of the following:

  • direct loss or theft of Classified Information (e.g. papers taken from car, post intercepted, unauthorised download);
  • loss or theft or equipment used to store Classified Information (e.g. laptop, smartphone, USB stick). Theft of equipment and physical break ins should also be reported to the Security Centre (telephone 029 20 874445);
  • accidental or unauthorised disclosure of ‘Confidential’ or ‘Highly Confidential’ Classified Information (e.g. via misaddressed or incorrect system permissions/filter failure);
  • corruption or unauthorised modification of vital records (e.g. alteration of master records);
  • computer systems or equipment compromise (e.g. virus, malware, denial of service attack);
  • compromised IT user account (e.g. spooking, hacking, shared password), and
  • break in at a location holding Classified Information or containing critical information processing equipment such as servers.