What is considered an IT Security Issue, and how do I report one?

Security incidents, including system compromise (hacking), denial of service, or unwanted connections (scanning or probing) should be reported to IT Help Desk, (609) 771-2660, helpdesk@tcnj.edu. You should also change your password as soon as possible.

Computer abuse, including inappropriate or commercial use of resources, password sharing, software piracy, phishing attempts, chain mail, pyramid schemes, fraud, and forgery, should be reported to IT Help Desk, (609) 771-2660, helpdesk@tcnj.edu.  Please forward suspected phishing attempts or suspicious email including the full email headers to phish@tcnj.edu.  Forwarding suspicious email without full headers is of no use to us.

Theft,  Please report all computer-related thefts to Campus Police (609-771-2345) as soon as possible and then refer to the section on reporting a Data Incident.

Data Incident, TCNJ IT department assists in responding to and investigating incidents related to computer and network security breaches, loss or theft of laptops, computers, USB or other portable storage devices, and unauthorized disclosure or modification of electronic institutional or personal information.

In the event a security incident concerning a computer hosting sensitive institutional or personal data is suspected, the individual, supervisor, or other departmental representative should take immediate action to report the incident to the IT helpdesk as soon as possible. You should also change your password immediately.

Contact the IT helpdesk (609-771-2660 or helpdesk@tcnj.edu) and state that you believe a security incident has occurred. Provide your name and as many details as possible about the incident. It is critical that you notify the helpdesk as soon as possible.

Please do not continue using the suspected compromised system.  Do not power it off, do not attempt to login, do not attempt to alter the system.  These actions will delete forensic evidence that may be critical to your incident.

Please ensure no one uses the computer and do not take any other action until advised by an authorized representative from the IT Department.

Do not talk about the incident with any other parties until you are authorized to do so by a representative from IT.