Report an Incident

Incident Reporting and Handling

The prompt reporting of information security incidents is critical to protecting university systems, data, and users. All suspected or confirmed incidents should be reported immediately to ensure appropriate response and mitigation.

Report any real or suspected information security incidents to the Office of Information Technology Service Desk by phone at 817-272-2208 or send an email to servicedesk@uta.edu. 

You may also contact the Information Security Office for questions at 817-272-5487 or send us an email at security@uta.edu.

Types of potential incidents may include real or suspected unauthorized access to a system, exposure or mishandling of sensitive/confidential information, active hacking, website defacement, or violations of policy.

Lost or Stolen Computing Devices

Lost or Stolen Computing Devices must be reported immediately to the following:

i. Police Department: Under the Jurisdiction of where the theft occurred. (Local PD or University PD for on campus) UTA Police phone number is 817-272-3381
ii. Property Management: They will require a form to be completed based on circumstances:

a. BF-INV-F1 Stolen Property
b. BF-INV-F3 Initial Lost or Missing University Property Form

iii. Information Security Office: ISO will need to have a Lost/Stolen Computer Asset Incident Report completed to allow us to gather necessary information to determine the risk of data exposure so we can report it to the state.

Suspected Phishing or E-mail based Malware Infection Attempts

For suspected Phishing emails, please refer to the Anti-Phishing site or send them to phish@uta.edu.

When in doubt, send them to the Anti-Phish Response Team.

For suspected email related malware infections refer to the Malware site.  If you have a suspected issue that you need assistance, contact the servicedesk@uta.edu. If you are on a wired network connection, unplug the network cable and do not turn the device off.

Server or Workstation Malware Infections

If your computer or server is suspected to be infected with malicious infected (such as a virus) contact the OIT Service Desk by email servicedesk@uta.edu or by phone 817-272-2208.

Disconnect the system from the network, but do not turn off the power until instructed otherwise by OIT or ISO.

NOTE: In the event that the potentially compromised computer or server stores, or has access to, confidential or controlled information, the computer or server may be taken by the Information Security Office to allow for a forensic image to be taken to determine the scope and impact of the incident. This information may be used in legal proceedings, so it is important that you do not make any changes or turn off your computer or server once you suspect it has been compromised. UT Arlington Information Security Office will clear the computer once it is ready for use.

Compromised Credentials (Passwords)

Please see the Compromised Accounts site for information on what actions to take if you think your password is known to others.

In all cases, report compromised passwords to the Office of Information Technology Service Desk.