A cyber security incident is an event involving an actual or potential malicious actor that threatens the confidentiality, integrity, or availability of UQ information assets (electronic or paper) or otherwise contravenes UQ's ICT Security Policy.

The source of a cyber security incident may be accidental, malicious, or significant exposure to a known threat. Incidents include but are not limited to:

  • Unauthorised access to UQ systems
  • Malicious or accidental exposure of non-public UQ data
  • Unauthorised scans or probes of UQ systems
  • Denial of service attacks against UQ systems or infrastructure
  • Execution of malicious software on UQ systems

It is critical that all cyber security incidents are reported as soon as they are detected to minimise the potential harm caused by these events. The signs of an incident may be subtle, so it is better to report a suspicious event if you are not sure.

Reporting security incidents and risks

To report a cyber security incident or risk, please use the form below:

Report an incident or risk