Information Security
Incident Reporting
- Incident reporting policies and requirements
- Unauthorized access on a host machine
- Unauthorized wiretapping on the data network
- Unsolicited bulk e-mail (spam) originating or passing through a VCU system
- Denial of service attacks
- Unauthorized modification of web pages
- Compromised desktop PCs (Virus, Worm and Trojan attacks)
- Report a security incident (To SOM ISM)
- Information Security Incident Report Form (Coming Soon)
- Contact the VCU School of Medicine Information Security at s2dhan@vcu.edu
- Report a lost or stolen device
- Report to VCU Police
- Report to VCU Information Security [PDF]
Please send completed form to s2dhan@vcu.edu - Report to VCU HelpDesk
As required by the VCU Information Security Standard, any lost or stolen computers, or loss of storage devices and electronic media with sensitive information must be reported to the University Information Security Department within 24 hours. Several methods exist for reporting of a lost or stolen device:
What constitutes a security incident?
security incident can be defined as any event that exposes information resources to accidental or intentional disclosure, modification, destruction, or decreased service levels. Security incidents may include, but are not limited to:
Please follow the University Computer Security Incident Handling Procedures to report a security incident
