What is a Security Incident?
An Security Incident is an event where the confidentiality, integrity or availability of UTPA has been affected or could potentially be affected. If you can answer 'yes' to any of the following questions, the incident is considered significant and must be reported.
- Has a University owned computer or other University owned computing device been lost or stolen?
- Was there an unauthorized disclosure or compromise of the security, confidentiality, or integrity of Sensitive Digital Data or Personal Identifying Information confidential or sensitive information?
- Does the incident involve a harmful virus, worm or other attack that propagates through the network?
- Could the attack be propagated to other state systems beyond the control of the institution?
- Was there an unwanted disruption or denial of service?
- Were there successful attempts to gain unauthorized access to a mission critical information resource or confidential/sensitive data?
- Was a University information resource used for the processing or storage of data such as illegal file sharing or for distribution of illegal materials?
- Were there attacks on the Internet and widespread automated attacks against Internet sites including website defacement?
- Did the incident involve new types of attacks or new vulnerabilities?
- Were University information resources used to attack others?
- Were there failures in change management processes or unauthorized changes to mission critical hardware, firmware, data or software?
Reporting an Incident
Please contact us as soon as possible if you answered 'yes' to any of the above questions.
In Person: Administration Building Room 329