Procedure for Handling a Compromised Account at MENDELU

At MENDELU, we prioritize the security of our information systems. If OIT identifies a compromised user account, the following steps are taken:

1. Account Blocking

Once it is determined that the account has been compromised, the IT administrators immediately block the account to prevent further misuse.

2. Contacting the User

• Employees are contacted by phone at the number listed in their profile in the employee system. We recommend that all employees have up-to-date and alternative contact details here.
• Students must go in person to the relevant IT department of the university with a valid ID to receive a new password.

3. Access Restoration

After verifying the identity of the student or contacting the employee by phone, the user will receive a new password, which they will then set according to the recommended security guidelines (in Czech language).

4. Cybersecurity Training

The compromised user will be contacted by the cybersecurity manager, who will educate them on the possible causes of the account compromise and provide recommendations for safer behavior in the digital environment.

Prevention Recommendations

To avoid account compromise, we recommend:

• Using strong and unique passwords.
• Regularly updating passwords and not sharing them (except through secure password managers).
• Being cautious with suspicious emails and links.
• Keeping up-to-date contact details in the employee system.

If you have any suspicions or questions, please feel free to contact Helpdesk or the cybersecurity manager.

---