Categories: PCSecurityWorkspace

How To Survive The Death Of Windows XP

Last time we checked, nearly 30 percent of Microsoft users were still running Windows XP. This was despite the dire warnings from Microsoft that security updates would stop, leaving the affected computers vulnerable to attack by malware developers.

Now that the time has come, some are suggesting that hoards of malware will descend on your computer, seeking to take advantage of your unprotected machine, turning your computer into a zombie, or worse, stealing your data, your identity and financial information.

That’s the warning. Now let’s look at what will actually happen.

Don’t panic as XP eXPires

First, assuming your computer has had every update Microsoft has provided, you have at least a little while in which your freshly patched XP machine will be able to hold out against the forces of evil. But as time goes on, the threat of a security breach on your machine will grow and eventually the built-in protection could yield to malware attacks. Or, at least, that’s the official word.

But if you’re a sensible user, you’ve got antivirus or anti-malware software running on your machine that will continue to be updated and which will guard you against most of the malware out there. But you’ll be missing one layer of protection at the operating system level.

So while you’re protected, you’re more vulnerable than you would have been otherwise. New Windows XP vulnerabilities are sure to appear. And the vendors selling your protection software may not keep it going forever.

Exactly how you respond to this higher level of risk depends in large part on what you’re doing with that XP computer of yours. A great deal also depends on why the XP machine hasn’t already been upgraded.

For many of you, the real reason you’re still on XP is because you’re a bank. As the most conservative tech sector, the finance industry is also the one with the highest percentage of XP desktops. It is also running on ATM cash machines, but ATMs run Embedded Windows, and the XP version of that has a longer lifetime.

The same applies to a lot of medical equipment which has a processor running Windows embedded in it. Some people are running XP systems to interface to medical or manufacturing kit, because it requires older protocols such as NetBEUI. In this case you have an actual Windows XP machine, with some measure of conectivity, even though it is not connected to the outside world.

Even though this PC may be on an internal network, as long as it’s kept away from the Internet, you may be reasonably safe. Just be careful of strangers wielding USB memory sticks. Also, if this is a long term need, Microsoft will continue to support security updates as long as you enter into a service agreement.

Too mean to upgrade?

On the other hand, perhaps you’re in an organizsation that hasn’t upgraded because they’re too cheap to spend the money. Here, your recourse is to show your bosses on paper that upgrading to Windows 7 or Windows 8.1 is less expensive than ignoring the problem.

The best example of how much a major security breach can cost was provided by Target last year. In addition to finding out that fixing its security problems will cost hundreds of millions of dollars, the company also lost a significant portion of its value and a lot of its customer base.

Maybe you can use that lesson to pry some upgrade money out of the chief financial officer.

Then there are those companies that use a critical application that was written for XP and for which there are no updates. Depending on the way the application was delivered, you may be paying a maintenance fee every month. If so, now is the time to explain that maintenance needs to include a move to a new environment.

If that doesn’t work, take a shot at running the software using Windows 7, with the Windows XP emulation turned on. If that works, you’re home free.

On the other hand, you may be running a custom application that was written for XP, and for which there is no maintenance plan. Here you can at least check to see if it will run under Windows 7 or 8.1. If it looks as if it will, and you can thoroughly test it, then again you may luck out.

If it doesn’t, then try to run the computer without attaching it to the Internet. If that won’t work you will have to start preparing for a replacement. Even with some late-day workarounds, you’re going to have to move away from XP at some point.

For everyone else, it’s time to realise that a migration is inevitable. Most computer makers have migration automation software as does Microsoft. It doesn’t make it as easy as it would have years ago, but a migration is possible. Just plan on devoting one person per machine per day, less for an automated migration, and do it.

Or decide the time has come to refresh your Windows computers. It’ll cost you less in the long run.

Peter Judge contributed to this article.

How much do you know about Windows XP?

Originally published on eWeek.

Wayne Rash

Wayne Rash is senior correspondent for eWEEK and a writer with 30 years of experience. His career includes IT work for the US Air Force.

View Comments

  • If you are on a desktop or laptop that rarely connects to the internet than I can understand why the lack of initiative to upgrade. But how many people really fall into that category? Most people who have a PC of some form will use the internet, so the need to upgrade to avoid getting breached in my opinion is a no-brainer. The whole Target scenario is a PERFECT example of what can happen to big and small businesses. The sad thing is that everyone knew it was coming(the upgrade)so I'm very surprised why many haven't really prepared themselves better financially for the end of support for Windows XP. Allocate funds slowly every year to a "tech fund" so that when the need finally arises to upgrade it won't be a financial hardship.

Recent Posts

Craig Wright Sentenced For Contempt Of Court

Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…

2 days ago

El Salvador To Sell Or Discontinue Bitcoin Wallet, After IMF Deal

Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…

2 days ago

UK’s ICO Labels Google ‘Irresponsible’ For Tracking Change

Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…

2 days ago

EU Publishes iOS Interoperability Plans

European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…

3 days ago

Momeni Convicted In Bob Lee Murder

San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…

3 days ago