Microsoft Windows XP is officially dead. Yesterday, Microsoft put out the last security patch for XP and stories are proliferating about all the hacking that's about to take place. Patches for Internet Explorer 8 on Windows XP will also cease to be produced. If you're still running the Microsoft Windows XP operating system (OS), the very first thing to do is step back, take a deep breath and consider your options. In truth, the latest Windows XP patch from Microsoft should give the OS more than a month of support. Moreover, despite reports to the contrary, thieves won't be taking over the banks. Many automatic teller machines (ATMs) are still running Windows XP, but the banks have instituted their own security measures, one of which is that the ATMs are on a private network - not the Internet. Individual users can mitigate much of the Windows XP risk by using and updating a browser other than Microsoft's Internet Explorer, such as Google Chrome or Mozilla Firefox. Also, download the free Avast or AVG anti-virus applications and allow them to update automatically. Just to be extra safe too, don't indulge in online shopping with such computers. Use a smartphone instead. Businesses face the greatest challenges in dealing with the lack of Windows XP support. Paul Wright, from AccessData wrote an article that started out with the usual doom and gloom scenario. He noted that in Saudi Arabia, “medical equipment, ATMs, point of sale systems that run businesses and handle credit card data, industrial control systems used by power companies, kiosks, displays in hotels and airports” are all running Windows XP. He advised that, “Many of these systems will likely remain in use after Microsoft stops providing security patches because of the cost to upgrade and a fear of disrupting business.” Then Wright offered some constructive advice. “If there is unwillingness to upgrade, there are some steps that can be taken to reduce the risk. Do not use production business systems such as point of sale terminals for risky activities like web browsing and email. On personal computers, use other web browsers that will continue to be supported...and install exploit mitigation software such as the Microsoft Enhanced Mitigation Experience Toolkit (EMET) which has been known to prevent unpatched vulnerabilities from being exploited successfully.” Sophos' Paul Ducklin had a few other suggestions for businesses. First, he recommended ensuring that as of today, any computer running Windows XP is fully up-to-date on its security and system patches. Moving forward, keep updating other software that may be in use such as Flash, Java and anti-virus. Tighten restrictions on how and when systems running Microsoft XP are used. Check all the software and drivers installed on machines operating on XP and remove any not needed. Put XP computers on their own network, limit access into and out of that network and get rid of administrator-level user accounts. One final point is that now is the time to look beyond Microsoft. There is a move within large enterprises and even the Saudi government to consider open source alternatives to Microsoft. Seem impossible? Give Linux Mint (www.linuxmint.com) with the Cinnamon desktop a try.
