Home
Report an Incident

Report an Incident

Report an IT incident

Emergency IT Incident

Sensitive data incident

Immediately call 812-855-8476 (business hours) or 812-855-6789 (after hours) AND click for more instructions

Non-emergency security incident or privacy concern

Email it-incident@iu.edu or click for the incident reporting form, to report the incident. This can include abuse, identity theft, and data protection issues.

Email phishing

Forward with full headers* to phishing@iu.edu

Email abuse, misuse, or spam

Email it-incident@iu.edu, with full headers*

HIPAA violation

Email it-incident@iu.edu, outlining the incident details. Also call 812-855-8476 during business hours to ensure that attention is brought to the incident.

Privacy Complaint

Please refer to Policy ISPP-27 for appropriate contact information. For general privacy assistance send email to privacy@iu.edu.

* To display and send the full headers, see Display and send the full headers of an email message. In Outlook, you can also select Report Message in the ribbon's Home tab.

Reporting information security incidents

Immediately report any of the following to the University Information Security Office (UISO):

Suspected or actual security breaches of information – whether in printed, verbal, or electronic form – or of information systems used in the pursuit of the university's mission.
Abnormal systematic unsuccessful attempts to compromise information – whether in printed, verbal, or electronic form – or information systems used in the pursuit of the university's mission.
Suspected or actual weaknesses in the safeguards protecting information – whether in printed, verbal, or electronic form – or information systems used in the pursuit of the university's mission.

UISO Response Team

UISO responds to and investigates incidents related to misuse or abuse of IU information and IT resources, including computer and network security breaches, privacy breaches or concerns, lost or stolen devices (including personal devices containing institutional information), and unauthorized disclosure or modification of institutional or personal information.

For more information on information security incident management at IU, see: Information Security Incident Management, and ISPP-26 Policy: Information and Information System Incident Reporting, Management, and Breach Notification.