Members of the academic community at the University of Gdańsk, who use IT systems and digital services, should report any observed incidents and breaches of information security. Prompt reporting of such situations enables effective response, minimizes damage, and ensures the continuity of IT system operations.
Examples of incidents that should be reported include:
- Phishing – Emails, SMS messages, or other forms of communication attempting to steal login credentials, personal data, or financial information. For example, a message pretending to be from the dean's office with a link to a fake login form.
- Malware – Cases of computer infections with viruses, ransomware, trojans, or other unwanted software.
- Significant system slowdown – A sudden decrease in performance that may indicate a DoS attack or unauthorized background activity.
- Suspicion of a computer virus – Unusual system behavior, unexpected messages, changes to files, or automatic program launches.
- Data theft – Unauthorized access to data stored on computers, servers, or external storage devices.
- Unauthorized data copying – For example, transferring files containing students' personal data to a private USB drive or cloud storage.
- Unauthorized access to user accounts – An unauthorized person logging into the account of an employee, student, or system resources.
- Loss or theft of data storage devices – For example, losing a USB stick or laptop containing work-related data.
- Violation of IT security policies – Circumventing system security, installing unauthorized software, bypassing access control mechanisms.
- Malfunctioning security systems – For example, detecting disabled antivirus software, firewalls, or multi-factor authentication mechanisms.
Reporting Channels
Incidents can be reported through the following channels:
- Email to the dedicated address of the Personal Data Protection Inspectorate: iod@ug.edu.pl
- Email to the dedicated address of the University of Gdańsk IT Center: helpdesk@ug.edu.pl
- Phone: +48 58 523 25 88 (ext. 25 88)
Why is reporting important?
Every report allows:
- A quick response to the threat.
- Prevention of further spreading of the incident.
- Ensuring compliance with legal regulations.
- Building a security culture within the academic environment.
