Presentation on theme: "The End of Windows XP, and its Impact on Small Business Sandy Area Chamber of Commerce March 19, 2014 By Matt Wilson – Brightstar Consulting"— Presentation transcript:
The End of Windows XP, and its Impact on Small Business Sandy Area Chamber of Commerce March 19, 2014 By Matt Wilson – Brightstar Consulting firstname.lastname@example.org www.brightstarconsulting.com Email for copy of slide deck
The End of the World as We Know It On April 8, 2014 the world as we know it will end Or at least that’s the story that the press will likely start carrying in the next week or two But, what is really going to happen on April 8, 2014?
What is Really Going to Happen? April 8, 2014 will mark the “End of Extended Support” for Microsoft’s Windows XP operating system and several other software products Essentially that means that Microsoft will no longer produce software updates, especially security updates, for Windows XP, including related products such as Office 2013 and Internet Explorer 8 Microsoft will no longer provide technical support for Windows XP, other than with previously published information and software
Microsoft Product Lifecycle ProductsLatest Update or Service Pack End of Mainstream Support End of Extended Support Windows XPService Pack 3April 14, 2009April 8, 2014 Windows VistaService Pack 2April 10, 2012April 11, 2017 Windows 7Service Pack 1January 13, 2015January 14, 2020 Windows 8Windows 8.1January 9, 2018January 10, 2023 Internet Explorer 8April 14, 2009April 8, 2014 Office 2013 AppsApril 14, 2009April 8, 2014 Microsoft Security Essentials * * Microsoft Security Essentials will not be available for download on Windows XP after April 8, 2014. If you already have Microsoft Security Essentials installed, you will continue to receive anti-malware signature updates through July 14, 2015.
Microsoft End of Sales Client Operating Systems Date of general availability Retail software end of sales * End of sales with Windows preinstalled Windows XPDecember 31, 2001June 30, 2008October 22, 2010 Windows VistaJanuary 30, 2007October 22, 2010October 22, 2011 Windows 7 Home Basic, Home Premium, Ultimate October 22, 2009October 31, 2013October 31, 2014 Windows 7 Professional October 22, 2009October 31, 2013Not yet established ** Windows 8October 26, 2012October 31, 2014Not yet established Windows 8.1October 18, 2013Not yet established * When retail software reaches its end of sales date it can still be purchased through OEMs until the end of sales date for PCs with Windows preinstalled. ** Microsoft will provide one year of notice prior to the end of sale date.
Why is This Such a Big Deal? Windows XP, despite three successor operating systems (Windows Vista, Windows 7, and Windows 8) is still heavily relied upon by many businesses, especially small businesses, for day to day business – Some estimate that 30% or more of current computers are still running Windows XP An unsupported operating system means newly discovered flaws or security vulnerabilities will *never* be addressed or repaired Some are predicting massive new attacks targeted at Windows XP because “hackers” have been “saving” the exploits they’ve discovered until after Microsoft is no longer or patching it
Why is This NOT Such a Big Deal? Companies routinely discontinue support for older products or products lines – Ford no longer produces parts for the Model T – IBM no longer supports it’s Selectric line of typewriters – Apple no longer supports Snow Leopard After April 8, 2014 Windows XP will still continue to function, and there will be various ways that you can get support for it – However, there is no way for that support to include new software updates Nearly all of the things you can or should be doing to prepare for the end of XP are things that you should already be doing, regardless of the software you are using
What Does All Of This Mean? Will it be safe to continue using Windows XP? Does your Windows XP computer have to be replaced immediately? What are the realistic threats and risks if you keep using Windows XP? What alternatives are there to Windows XP? Windows 8? Apple? Open Source?
What Should a Small Business Do? Don’t panic – That includes not rushing out and doing something immediately just to be rid of XP Plan your migration away from Windows XP Continue doing all routine IT planning and tasks – Maintenance – Patching and upgrading – Backup – Malware / security protection – PLANNING Bear in mind, patching XP is not the first line of defense, nor should it be
What Should a Small Business Do? Be wary of anyone contacting you implying that they are from Microsoft and have detected that you have problems with your computer and offer to fix it Do not believe anyone that claims that they have new software “patches” for Windows XP – They do not – It is impossible for anyone but Microsoft to produce a true patch for any version of Windows
HIPAA / SOX Are there special considerations for industries that fall under regulatory systems such as HIPAA or Sarbanes-Oxley? – A standard expectation in HIPAA is that software is current and maintained with current patches – Since there will be no further patches for XP, the assumption is that XP will no longer be XP compliant – Follow your existing HIPAA audits and plans, and update if necessary to account for XP and your plans for it
What Should I Do to Continue Using Windows XP? Free Options / Options You Can Implement Yourself – Don’t run Windows (especially Windows XP) in admin mode The account you do daily tasks in should be a “standard user account”, with a separate “administrator” account for administrative tasks For 2013, 92% of the attacks out there could have been avoided by running as a standard user For 2013, 100% of the Internet Explorer attacks could have been avoided by running as a standard user – Install Windows XP’s final updates on April 8, 2014, and then manually check again on April 9th Make sure Microsoft Office is fully patched as well, especially if you are running Office 2003 – Install an alternative browser or browsers on Windows XP computers Don’t sole rely on Internet Explorer or use it as your default browser in Windows XP – Review installed software (a good idea for all computers) Uninstall anything that’s not needed – Especially consider Java, Flash, Shockwave or “media” software Consider disabling or uninstalling browser plugs-in, especially browser toolbars
What Should I Do to Continue Using Windows XP? Free Options / Options You Can Implement Yourself – Use up to date security/antivirus software There are several good free options out there, but most are only for free to home users Avoid any sort of “internet security” package that tries to do more than provide antivirus protection – Make sure the Windows Firewall is turned on and configured properly – Make sure you continue backing up and verifying your data – Make sure Windows XP computers are kept behind a recent NAT router Windows XP should never be connected to public or unencrypted Wi-Fi hot spots – Consider updating Windows XP to a more recent operating system Also consider the age of the hardware XP is currently running on
What Should I Do to Continue Using Windows XP? Pay Options / Options You Might Need Professional Help to Implement – An “external” internet filtering / security service such as OpenDNS – Computer monitoring / patching / repair service such as offered by a Managed Service Provider – “Managed” Antivirus service, often offered by MSP’s – Upgrade NAT router to a UTM firewall
Resources Windows lifecycle fact sheet - http://windows.microsoft.com/en- us/windows/lifecycle http://windows.microsoft.com/en- us/windows/lifecycle Microsoft Products Support Lifecycle Policy (useful for finding out dates for Microsoft products) - http://support.microsoft.com/gp/lifeselect http://support.microsoft.com/gp/lifeselect Microsoft Product Lifecycle Search (useful for searching for specific lifecyle information for specific products) - http://support.microsoft.com/lifecycle/search/ http://support.microsoft.com/lifecycle/search/