Skip to main content

Types of Information Security Incidents

Note: Information security incidents involving criminal acts or actions that you feel pose an immediate threat to your personal safety or the privacy of your confidential data should be reported to the University Police at extension 86851 or by calling 911.

  • Accessing your computer, device or data without permission or authorization

  • Hacking of a University system

  • Evidence of unauthorized release of University information

  • Using University resources to access any non-University computer system without permission or authorization

  • Using University IT resources to harass or threaten someone

  • Violating state or federal regulations with University IT resources

  • Finding print outs with confidential data in an unprotected area

Incident Response

  • If a computer or device is currently under an active attack and/or has likely experienced an incident involving Level 1 data, immediately contact the Information Security Office at 916-278-1999.  If it is after hours call 916-278-7622 and leave a detailed message.  A page will go out to an on call technician who will follow up with the call.

  • If you are reporting inappropriate or objectionable email, or SPAM email, please forward the email to, and include the full headers of the email with your report.

  • If a computer or other device is not currently under an active attack and/or does not contain Level 1 data you may complete this online incident report.

  • The California State Auditor is your confidential avenue for reporting any type of improper activities by state agencies or employees. You may do so at

Please see the Incident Response Standard for more examples and the process for handling an Information Security incident.

IT Incident Report

Standard response to most reported incidents is 2 hours. If you need the incident to be handled before the 2 hour time frame please initial the following box and ISO will contact you concerning the issue.