Information security incident is an intentional or unintentional event or circumstance that compromises or may compromise the integrity, confidentiality, or appropriate level of availability of data and services under the responsibility of the university.

Examples of security incidents include:

• Data breach
• Falling victim to a phishing message (resulting in credentials being compromised)
• Unexpected or significant service disruption
• Unauthorized alteration of web pages
• Confidential material being forgotten or made publicly available (e.g., copiers, printers, trash bins, excessive access rights)
• Lost storage media or devices
• Open and unmonitored data center or network closet
• Significant malware.

In ambiguous cases, it is safest to seek advice from Aalto IT's cyber security group.

If personal data is compromised, the university may, by law, be required to report the incident to the Data Protection Ombudsman and inform those individuals affected by the incident.

Damages can happen to anyone, but violations of data protection and security regulations may lead to disciplinary action.

• You can send a free-form email to the address [email protected].
• You can also report a security incident using the forms below. Form 1 is the general section of the report, which is intended for all reporters. The entire form does not need to be completed. Form 2 allows for more detailed technical background information about the incident. This form is system-oriented, but can be filled out with relevant information for any security incidents. It also does not need to be completed in its entirety. The forms are returned using Aalto University's internal email system (Aalto address), internal mail in a sealed envelope, or regular mail.
  • When returning the forms via internal mail, the recipient should be labeled as: Cyber Security/Aalto IT and post office box 11100.
  • When using regular mail, the form should be sent to: Tietoturva/Aalto IT, P.O. Box 11100, 00076 Aalto.

Note! A completed report is always confidential and may contain information that could be harmful if in the wrong hands. Therefore, handle the forms accordingly.

If you wish to make an anonymous report, the best way to do so is by using the forms on this page and returning them via internal mail or regular mail.

You can also call and report the incident to +358 (0)50 300 7313. In sensitive cases, a report can also be made to [email protected], in which case the message will go directly to the university's Chief Information Security Officer.

Reporting phishing has its own procedure and guidelines. If one responds to a phishing message, it becomes a security incident.

1. Ensure that your device software is up to date.
2. When working outside the university, use the Aalto VPN connection to access all of the university's protections.
3. The sender's name in emails can be forged, so verify the sender's actual email address. Use Aalto email for work purposes.
4. Change your Aalto account password using online banking credentials at https://password.aalto.fi.
5. Be cautious with the emails you receive, especially if they contain attachments or links.
6. Regularly back up your important files.
7. Use a different password for Aalto University systems than for other services. If you suspect that your password has been compromised, change it immediately at https://password.aalto.fi.
8. Report all your suspicions of incidents and malicious messages to the Cyber Security Team.