News & Alerts

July 23, 2019

The IT Security Office will be sending the following email around to sponsors of Guest accounts to advise sponsors to review your sponsored guest accounts and terminate any that are no longer needed.

July 9, 2019

Update (7/11/19)

Apple as pushed out a silent update to address the Zoom vulnerabilities by removing the local web server. This update is said to have no negative impact on the OS or the Zoom application itself.

June 21, 2019

Microsoft has announced a vulnerability in the Outlook for Android app for versions < 3.0.88. If this vulnerability is successfully exploited, the attacker can execute malicious in-app client-side code on the compromised device.

May 22, 2019

The following email is legitimate and has been sent to various members of the Duke community.

April 11, 2019

Researchers sometimes discover security vulnerabilities with university systems and networks, and Duke recognizes the value of identifying and remediating these issues, in accordance with the university’s responsible disclosure policy found here:

February 7, 2019
January 17, 2019

The Duke IT Security Office has received multiple reports of the following widespread phishing attack purportedly allowing the recipient to retrieve a voice message. 

December 20, 2018

The following email was sent to all Duke University and Duke Health Staff and Faculty.

Please note that this email is legitimate and we ask that you continue to forward any suspicious messages to

December 19, 2018

The IT Security Office has received several reports of email fraud attempts where attackers are impersonating Duke staff.

December 19, 2018

We'd like to recognize Darshil Shah for their efforts in uncovering an authentication bypass vulnerability on a Duke Unviersity website.