Cybersecurity – information security incident
An information security incident is an unexpected event that disrupts the normal functioning of an IT system, service or process. This could be, for example, a failure, technical error, human error, breach of IT infrastructure security or any other situation requiring a rapid response. Reporting an incident allows for faster corrective action and minimises the impact on users and the organisation. Incidents can be reported using:
- the form available at https://incydent.us.edu.pl (preferred form of making a report)
- an email sent to incydent@us.edu.pl,
- by telephone at: 32 359 1800.
Examples of situations that should be reported include:
- data theft in any form,
- loss of data storage media or paper documentation,
- unauthorised copying or removal of data,
- unauthorised modification of data in any form,
- disclosure of data to an unauthorised person,
- failure to comply with the provisions of the Information Security Policy at the University of Silesia in Katowice,
- noticing signs of attempted or actual break-ins into rooms or locked document cabinets,
- breach of confidentiality of access data to the IT system (the system does not respond to the password),
- partial or total loss of data or access to data beyond the scope of the granted permissions,
- lack of access to the appropriate application or change in the scope of designated access to server resources,
- suspicion of the presence of a computer virus,
- noticing signs of an attempt to break into the IT system,
- significant slowdown in the operation of the IT system,
- anomalies in the functioning of the computer network,
- theft or suspected theft of computer equipment or documents containing data,
- unexpected change in the location of computer equipment.