Cyber security incidents can lead to damage of University reputation and disrupt business operation. University data may be exposed, accessed or modified without  authorization and knowledge.  NUS Staff and Students should report any security incidents immediately.

You can report any cybersecurity security incidents via this form.

To facilitate the reporting process, please prepare the following information:

1. When did the incident occur?

2. Who reported the incident?

3. How was the incident discovered?

4. What were the targeted systems or accounts details? e.g. userID, ip address, MAC address, URL

5. Was there any data loss or leakage? If so, please elaborate the data classification and description.

6. Was there any follow up actions taken and possible impacts to the university?

Below is a non-exhaustive list of common security incidents that should be reported. When in doubt, report it anyway.

For All Staff/Students

1. Unauthorized use of your accounts (e.g. emails sent without your knowledge).

2. Responded to a phishing or suspicious emails (e.g. supplied information such as your credentials or other account information).

3. Lost or stolen mobile devices or portable storage containing NUS Confidential or NUS Restricted data.

4. Incorrectly sent email which contains NUS Confidential or NUS Restricted data.

5. NUS Confidential or NUS Restricted data exposed on public website .

6. Knowledge or discovery of any vulnerabilities in NUS systems or application

For System Administrators

7.   Unauthorized logins to system, including successful and persistent failed logins.

8.    Unauthorized use of system for processing or storing of data (e.g. upload unintended files to website).

9.    Changes to system without instruction, or consent, say evident changes on system hardware, firmware, or software functionality, configuration, logs or data (e.g. web page defacement).

10.   Unwanted disruption of service (e.g. unusually high volume of request for e-services)