Report an Incident

The UMIT Information Security Office responds to and investigates information security incidents related to misuse or abuse of university information and information technology resources. An information security incident is defined as an event, whether electronic, physical or social that adversely impacts the confidentiality, integrity or availability of University of Miami data or information systems; or a real or suspected action, inconsistent with University of Miami Information Technology (UMIT) policies.

Reporting an Information Security Incident

Information Security Incidents can be reported to the UMIT Information Security Office by sending e-mail to

Reporting spam, phishing, or email abuse
  • Through a new feature offered by Microsoft, you can now report suspicious emails and phishing attempts through the quick and easy "Report Message" tool within Outlook on your desktop or online. Click here to learn more.
  • In addition, unsolicited spam email and phishing scams targeting University of Miami faculty, staff or students should be reported to:
  • Email abuse should be reported to:

Reporting HIPAA Violations or the Exposure of Restricted Data

HIPAA (Protected Health Information) violations or the potential unauthorized exposure of UM Restricted Data such as Protected Health Information (PHI) or Personal Identification Information (PII) must be reported to the University of Miami Office of HIPAA Security & Privacy.

Unusual Activity

If your device is not acting as expected or you suspect your account has been compromised, please change your password immediately. Then, contact the UMIT Service Desk to submit an incident ticket. This will ensure that a UMIT team member is assigned to your case and will arrange to further investigate.