Users who have Java enabled in their browsers are vulnerable to a threat referred to as "Zero Day Java 7 Vulnerability." Browsing the web with a vulnerable version of Java installed and enabled means that simply visiting a website is enough for an attacker to compromise your computer. This is known as a "drive-by download." Tulane Information Security is aware of this exposure and is monitoring activity related to this issue. We are blocking traffic from known sites that represent a threat.
While disabling Java is one method of blocking this threat, the use of Java is essential to use of Banner and other Tulane enterprise systems so it is not a practical solution. We recommend that the Tulane computing community be as vigilant as possible about visiting unfamiliar websites and consider the following:
Information Security will provide continued updates about his issue.
Please follow Information Security at https://twitter.com/tulaneInfoSec.
If you have questions or require further detail about this issue, please email us at firstname.lastname@example.org.
Technology Services, Tulane University, New Orleans, LA 70118 -- TSNOC: 1-866-276-1428 -- email@example.com