itb-nz logo
Story image

Windows XP: "It’s time to migrate, migrate, migrate"

26 Mar 2014

Pure Hacking, an Australian information security consultancy, is strongly advising those companies and individuals still running Windows XP as their operating system to migrate to the stable, mature Windows 7 or Windows 8 – now.

From 8 April 8 2014, Microsoft’s support for Windows XP will be switched off meaning no further security fixes, patches for vulnerabilities or updates for the operating system.

There will be no protection from new attacks, intrusion or hacking, even for those who have upgraded from Service Pack 2 to Service Pack 3.

“Across Australia there are tens of thousands of machines still running Windows XP – just think POS terminals, let alone all those SMBs," says Gordon Maddern, CTO, Pure Hacking.

"Anyone still on XP is will be wide open to attack. All new vulnerabilities – and countless numbers of these are likely – will no longer be fixed by Microsoft.

"I cannot stress enough, it’s time to migrate, migrate, migrate.”

Pure Hacking’s advice is to:

Disable what you don’t need on the operating system:

Good system hardening is an essential first step and should be applied to all production systems. Steps include removing unnecessary programs and utilities such as file and print sharing, disabling guest accounts, changing default passwords and enabling auditing to alert to unauthorised access attempts.

Replace XP with Windows 7 or Windows 8:

This is of particular urgency for any end user systems that have connectivity to the Internet.

Segregate legacy installations:

Move Windows XP machines that cannot be updated to a segregated network or zone. Set strict access control that won’t allow communication with the rest of the network so that any breach can be contained.

Implement application whitelisting control:

This works in the opposite way to antivirus in that it allows only known good/trusted software to run as opposed to stopping known bad software. Windows XP has some built-in support for this, called software restriction policies, however third party application whitelisting products typically provide much better protection.

For more information on how to move away from Windows XP click here