Shane Chambers No Comments

Businesses Have Just One Year to Upgrade from Windows 7

Earlier this week, Microsoft made the announcement that Windows 7 would finally be reaching end-of-life; meaning that from January 14th 2020, it will no longer receive free security updates from Microsoft. When Windows XP hit end-of-life in 2014, the floodgates opened for cyber criminals who could now develop malware for the operating system without fear of vulnerabilities being patched, and the same is expected to occur for Windows 7. So, with Windows 7 in use by an estimated 70% of businesses worldwide, what does this mean for them?

Windows 7
Windows7, the most popular OS for computers in the world, will reach end-of-life in 2020

When Windows XP reached the end of its own support cycle, it affected 40% of the world’s computers, leaving them vulnerable to cyber attacks. Despite a sharp increase in malware and several high-profile incidents such as the WannaCry attacks of 2017, it is estimated that up to 70 million PCs are still using the outdated (and frankly dangerous) operating system.

One of the main reasons why so many Windows XP machines are still out in the wild is due to the costs that upgrading can incur upon businesses. Upgrading a large number of PCs to a new operating system can be expensive, and sometimes the hardware is too old and must be replaced altogether. Furthermore, a lot of businesses use legacy software and programs that are quite specific to their industry and may not be supported on newer operating systems such as Windows 10. Small and medium sized businesses in particular can find it hard to find the time and budget to upgrade from obsolete operating systems.

So what will happen when Windows 7 reaches the end?
Even after January 14th, 2020, you will still be able to use Windows 7. However, any security vulnerabilities or bugs won’t be fixed by Microsoft, leaving you open to cyber criminals who will be hoping to take advantage of businesses who are slow to make the change. Without regular patches and updates, users of Windows 7 will essentially be at the mercy of hackers.

For most businesses, we would advise starting to plan straight away and aim to update to Windows 10 well in advance of the deadline. However, for those who can’t upgrade due to use of legacy software or other business reasons, Microsoft will be offering an extended support period – for a fee. Until 2023, companies will be able to pay a monthly price (per Windows 7 PC) to Microsoft in order to continue to receive security updates.

Microsoft haven’t announced the exact cost yet, but have said that it will increase in cost each year, and will end in 2023. So, we see extended support as a less-than-ideal option, but for workstations that cannot be moved off Windows 7 for the moment, it’s definitely a better choice than leaving them vulnerable.

How do I prepare to upgrade my Windows 7 machines?
It is important to start planning now and get an accurate picture of how much work will be needed. Start by identifying how many PCs use Windows 7, and work out how many PCs can be upgraded and which ones will need to be replaced altogether.

Next you will need to identify any software and legacy systems that may need to run on Windows 7, and see if it possible to upgrade or find a way to run them on a newer operating system, or whether they can be replaced with a different product that can be ran on Windows 10.

A timeline will need to be drawn up for the upgrade process, to work out how soon you will be able to upgrade or replace machines, with budget laid out to cover the costs of upgrading and when time can be spared by IT staff in order to undertake the project

Lastly, if any machines DO need to stay on Windows 7, you will need to decide whether to pay for Microsoft’s extended support and implement security controls where possible to separate crucial systems from these Windows 7 PCs.

The good news
Luckily, Microsoft have realised the difficulties that having to update operating systems can cause businesses, so Windows 10 has been developed with that in mind. Their new model is known as Windows-as-a-Service, and means Windows 10 will receive continuous content/feature updates in addition to security patches, meaning it will likely have a much longer life cycle than any previous operating system.
What Windows 10 will look like in ten year’s time, we couldn’t tell you, but the ability for Windows 10 to be continually developed without disrupting businesses is something we are sure everyone will be grateful for.

Shane Chambers No Comments

Quora Users Watch Out – 100 Million Users Details Leaked in Data Breach

Another day, another data breach, it seems. On Friday, Quora became aware of an incident involving an “unauthorised third party” accessing data from 100 million users of the Q&A platform, and yesterday it began to notify users in an attempt to contain the incident. Quora Tweeted late last night, “We have discovered that some user data was compromised by unauthorized access to our systems. We’ve taken steps to ensure that the situation is contained and are notifying affected users. Protecting your information is our top priority” and directed users to a blog post with further information.

“It is our responsibility to make sure things like this don’t happen, and we failed to meet that responsibility”
– Quora CEO Adam D’Angelo

Read more

Shane Chambers No Comments

Irish Businesses and Consumers Targeted by Extortion Email Scam

It’s 2018, and phishing emails are just an expected part of life for email users around the world, containing all manner of malware within concealed links and dodgy attachments. Most of us can recognise poorly spelled phishing emails that lack any real context, but what happens when something more complex hits your inbox? What if a cyber criminal emailed you your password – a real password you’ve used – and told you that they had compromising videos of you and more? What if they said that unless you pay a Bitcoin ransom, they would share this incriminating footage with everyone on your contacts list? That’s exactly what has been happening to thousands of Irish users, to both personal and corporate email addresses.

Cyber criminals are ever trying to find newer, more sophisticated means to scam the general public and businesses through phishing

Read more

Shane Chambers No Comments

Irish Companies Reporting Less Than 5% of Cyber Crime

Irish companies are believed to be reporting less than 5% of cyber attacks to police, according to disparities between figure from the Garda cyber crime unit and reports from private cyber security companies. Detective Superintendent and Head of the Garda Nation Cyber Crime Bureau, Michael Gubbins, has said that brand damage and embarrassment are among reasons given by companies for the under-reporting of cyber crime to the Gardai.

Gardai believe that companies are afraid of brand damage, leading to a vast under-reporting of cyber crime to authorities.

Read more