IT ALERT: Avoid Internet Explorer Until Vulnerability is Fixed

 

Dear SDSU Students, Faculty and Staff:

The Microsoft Internet Explorer (IE) web browser has a critical vulnerability that is currently being exploited on the Internet. A patch is not yet available. If you use IE, please use an alternate web browser (such as Microsoft Edge, Google Chrome, or Mozilla Firefox) until a patch is available.

Affected Versions and Threats

All supported Windows desktop and Server OS versions of Microsoft Internet Explorer are at risk.

With no patch to help prevent this critical vulnerability, an attacker who successfully exploits the vulnerability could gain the same user rights as the current user. Microsoft reports that, with such access, an attacker could install programs; view, change, or delete data; create new accounts with full user rights; or completely take over a device.

General Security Recommendations

We ask that all Internet Explorer users do the following:

  • Use an alternate web browser until Microsoft releases an update to IE.
  • Do not click suspicious links in email.
  • Do not open shared documents or email attachments unless you are expecting them.
  • Keep your software and apps up-to-date. For SDSU-managed computers, the update will be applied automatically when available.

Thank you for taking this issue seriously to help protect your information and potentially university data. Please contact the IT Security Office at [email protected] if you have any questions.

The IT Security Office