IT security incident

An IT security incident is an event that negatively affects one or more of the three protection goals of information security (confidentiality, integrity, availability).

Examples are

  • The loss or theft of company computers
  • Successful phishing attacks
  • The infestation of computers with malware (viruses, worms, Trojans, etc.)
  • Attempted or successful attacks on university servers and networks (e.g. denial of service or ransomware)

If you are affected by an IT security incident or suspect this, please report it immediately. Reporting is necessary to protect you and others from consequences such as data loss and data manipulation.

In addition, the BUW is obliged to report certain IT security incidents to the State Commissioner for Data Protection and Freedom of Information (LDI) and the Ministry of Culture and Science (MKW).

Please report IT security incidents immediately to the ZIM user advisory service by mail and or telephone (+49 (0)202 439 3295).

The following information will make it easier for our employees to help you quickly and adequately:

  • Who is reporting the incident (name, contact details, organisational unit)?
  • What is being observed (e.g. detection by virus scanner, computer encrypted)?
  • Which IT systems are affected (server name or computer name and IPs)?
  • Where are the IT systems located (on campus or home office)?
  • When did the event occur?
  • Wait for queries from the user advisory service