Cyber security emergencies

A cyber security emergency is a significant incident where a malicious cyber attack disrupts our system infrastructure or network, compromises sensitive student or University data, or poses a major threat to the university's operations.

If you suspect something, report it immediately to the Computer Emergency Response Team (CERT). Where possible, phone so we can act more quickly.

Examples include:

Your machine is being attacked (eg ransomware infection)
Data breaches
Significant disruption of IT systems due to a cyberattack
Phishing attack targeting multiple users

What isn’t an emergency

A problem that is urgent to you (eg being locked out of Duo two-factor authentication before an exam) but isn't a cyber attack
Forgotten passwords
Problems accessing your account (eg VLE)
Access to systems (eg VPN or privileged accounts)

These aren't cyber security emergencies and the CERT team cannot help. Only the IT Services support team can resolve your issue.

Contact IT Services

Report a cyber security emergency

For genuine cyber security emergencies, contact the Computer Emergency Response Team (CERT).

cert@york.ac.uk
+44 (0) 1904 326850

Do not contact CERT for general IT issues.

Cyber security help guides

Advice and guidance on common topics, including strong passwords, phishing scams and anti-virus protection.

Explore cyber security guidance

General IT help guides

Quickly find answers and solve common issues with help articles and how-to guides.

Browse IT help