The TTU Office of the CIO has alerted the TTU community of an unpatched vulnerability that affects all versions of Internet Explorer. Exploitation of this vulnerability can result in an attacker taking complete control of the infected PC. The damage is done when the user visits a specially crafted or infected website.
Each of the following options will mitigate the vulnerability until a complete remedy is released by Microsoft. Law School IT recommend option 1 and 2 to everyone. Please contact computer support if option 3 or 4 is needed.
1. Change Internet Explorer’s Internet Security Zone setting to “High.” Instructions available at https://www.askit.ttu.edu/portal/app/portlets/results/viewsolution.jsp?solutionid=040829708443854;
2. Use a different browser such as Firefox until Microsoft releases a complete remedy
3. Download and install Microsoft’s temporary solution (“Fix it”), available at http://support.microsoft.com/kb/2887505; Note: this “Fix it” is only valid for 32-bit versions of Internet Explorer
4. Install Microsoft’s Enhanced Mitigation Experience Toolkit (EMET 4.0) on your departmental systems. Additional information about EMET, including a link for free download, is available online at http://www.microsoft.com/en-us/download/details.aspx?id=39273.
In addition, please follow the following recommendations from the TTU IT Division to protect personal information and TTU information resources:
• Do not click on links contained within an email unless you are certain of the sender’s identity and expecting the information;
• Do not open email attachments unless you are certain of the sender’s identity and expecting the information - delete and do not reply to any of these emails;
• Be wary of visiting unknown or untrusted websites, or clicking on advertisements or search engine results;
• Update your desktop, laptop, and/or mobile device anti-virus software; and
• Keep current on critical system updates:
o Windows Users: http://windowsupdate.microsoft.com
o Mac Users: Use Software Update in System Preferences.
We appreciate your assistance as we partner to protect institutional resources, as well as personal information.