Quick Links ...
Award-Winning Security Videos
(created by college students)
Anti-Virus Software (free for DU students & employees)
Java 7 "zero-day" Vulnerability
You may have seen the recent news on the Java 7 "zero-day" vulnerability. Oracle has already released the patch (Java 7 Release 11) fixing the vulnerability and the IT Information Security team wanted to take the opportunity to provide some security recommendations and reminders:
- iBanner Forms Users: Please remain on Java 6 Release 18, this is the currently supported and recommended Java release for Banner. Java 6 is not affected by the recently announced vulnerability.
- All Users: We recommend you use one browser with Java enabled for DU applications that require Java and a separate browser with Java disabled for general internet browsing in order to reduce your risk.
- AntiVirus: Please make sure your AntiVirus solution is up to date and active. We recommend using the Symantec Endpoint Security available from the PioneerWeb Resources tab. IT provides both Windows and Mac versions free to all University students, faculty, and staff.
- Safe Surfing: This vulnerability and many others like it require a user to visit a site so the malicious java applet can be downloaded and executed on a browser with vulnerable Java software. DO NOT click on links in emails from people you do not know or if the site looks suspicious (or too good to be true).
The IT Information Security team uses a variety of security tools to monitor security and block attacks – but we need all users to take part in protecting DU and yourselves from these attacks. Do not click on links in email from senders you do not know and avoid visiting questionable web sites.
If you have questions, need additional information, or need assistance, please contact the IT Help Desk at (303) 871-4700.
Additional information and resources: