Security and privacy incidents should be reported to the ISO as soon as they are discovered. Incidents involving university information resources which require reporting include but are not limited to: inadvertent exposure, data loss, data corruption, a breach of personal health information, ransomware or malware, physical destruction of information resources, defacement, fraud, and theft.
Read Before Reporting
We do not advise taking any corrective action on systems or devices that may be impacted as forensic analysis could be impacted. Contact us immediately by using this form.
Report Phishing
Phishing has its own process for reporting. Click the button below if you are trying to report a phishing email or want more information on phishing.
HIPAA: Report a concern
Do you feel your privacy rights under HIPAA were violated? Please start the reporting process with the HIPAA Compliance Officer.