Account Breach

What is an Account Breach?

An account breach refers to accounts that have been compromised, resulting in possible data loss, Malicious activity or SPAM behaviour. This could mean that another user has gained access to another account without consent or Google has identified suspicious activity. When this happens Google will send an alert email to both ICT and the user, stating that the account has been compromised. Below are the steps which ICT follows to ensure that the integrity of these accounts (both staff and students) remains protected when this situation arises.


Staff Accounts

1. Prompt the user to reset their password through the Self Service Password Reset portal.

2. Investigate any suspicious activity or changes associated with the account. For example, checking email signatures and spam folders.

3. Call the staff member and inform them of the issue. Give them the updated password and recommend calling ICT if they see any unfamiliar activity again. Also, advise the staff member to reset the password again if required.

Student Accounts

1. Reset student account password to default. The default password is the first letter of your preferred name (in UPPERCASE), the first letter of your surname (in lowercase), date of birth in ddmmyy format. For example John Smith born on 2nd March 1970 would be Js020370.

2. Investigate any suspicious activity or changes associated with the account. For example, checking email signatures and spam folders.

3. Call the school and inform the principal, LTST, and Trainee of the issue. Inform them of the updated password and recommend they call ICT if any suspicious activity occurs again. Finally, advise the student to reset their password again if required.

How to Reset a user Account

You can reset a user account via Active Directory. NOTE: if you are unsure of what Active Directory is and do not know how to access it, please refer to the IT Knowledge and Resource Hub. The steps for resetting a user account are shown below.

Please note that the password may take up to 15 minutes to sync.

1. On your remote desktop (AgeIDSSS01)

Click Start-Administrative Tools-Active Directory User and Computers.

2. You will now be presented with the following window.

3. Right click on the School’s AgeID and click “Find…”.

4. Search for the user account.

5. Right click the user and click Reset Password.

6. Untick the checkbox “User must change password at next login” and reset the password. Then click “OK”.