IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Windows XP: The final countdown

Support for Windows XP has now ended. Businesses need to look seriously at migrating their remaining systems

Inside the enterprise: By the time you read this, support for Microsoft's Windows XP will have ended.Of course, most people using Windows XP computers won't notice a change. XP-based PCs will not stop working.Rather, Microsoft ending support means the end of updates and, especially, the end of software patches. Microsoft will also no longer answer support queries related to the ageing OS. (Microsoft sets out what end of life means here - albeit in an article aimed at consumers.The main risks around XP's end of life fall into two camps: security, and reliability. Over time, unpatched systems and those that have not had updates will become less reliable, as other parts of the IT systems "stack" move on.

Compatibility with newer versions of applications is not guaranteed, and nor is the ability to work with browsers, or add-ons such as Java and Flash. And Microsoft will no longer fix any flaws in XP code.This is inconvenient, but it is more serious still when it comes to IT security. Windows XP will no longer receive security updates under Microsoft's "Patch Tuesday" system.Over time, this could leave users of XP systems facing a growing risk from hackers and cyber criminals. There is speculation in the IT security industry that hacking groups have been storing up Windows XP vulnerabilities for use now Windows XP has come out of support.Watchful eye At the very least, companies using Windows XP should be more vigilant about their IT security, and watch older systems with care. The UK's data protection authority, the ICO, has warned that companies running XP could be more vulnerable to data breaches, and should act promptly to ensure sensitive data is secure.At the very least, IT managers should make sure that third-party anti-virus and firewall applications are installed and up to date on XP machines: third party AV software will still run. Sophos, for example, has said it will continue to provide updates for XP versions of its security software until September 2015.But this is no long, or even medium, -term solution. For some use cases, such as desktop or laptop PCs, businesses do now need to move to replace XP-based computers.If they have more complex systems, such as custom applications that run in Internet Explorer 6 a common reason for sticking with XP then it might be appropriate to look at a solution, such as running IE6 (or XP) in a virtualised environment, while working out how to update the relevant code.For "embedded" systems, and dedicated hardware or other controllers running XP, the situation is more complex still. The UK government recently negotiated a support extension for Windows XP with Microsoft, at a cost of over 5m. That is unlikely to be an option for most companies.The first port of call should be the software or specialist hardware vendors, to see if their technology can be moved to another platform Windows 7, or Linux perhaps and if not, whether there are any contingency plans for support.But businesses of all types should quickly audit where they are running XP, and move to replace it. This really is the end of the road.Stephen Pritchard is a contributing editor at IT Pro.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

Microsoft reportedly blocks Russian Windows 10 and Windows 11 downloads
Microsoft Windows

Microsoft reportedly blocks Russian Windows 10 and Windows 11 downloads

20 Jun 2022
IT Pro News in Review: UK tech raises $16bn, Microsoft acquires Miburo, largest DDoS attack mitigated
Business strategy

IT Pro News in Review: UK tech raises $16bn, Microsoft acquires Miburo, largest DDoS attack mitigated

17 Jun 2022
Proofpoint details 'dangerous' ransomware flaw in SharePoint and OneDrive
ransomware

Proofpoint details 'dangerous' ransomware flaw in SharePoint and OneDrive

17 Jun 2022
Microsoft silent patches called “a grossly irresponsible policy”
cyber security

Microsoft silent patches called “a grossly irresponsible policy”

15 Jun 2022

Most Popular

Former Uber security chief to face fraud charges over hack coverup
data breaches

Former Uber security chief to face fraud charges over hack coverup

29 Jun 2022
Macmillan Publishers hit by apparent cyber attack as systems are forced offline
Security

Macmillan Publishers hit by apparent cyber attack as systems are forced offline

30 Jun 2022
Actively exploited server backdoor remains undetected in most organisations' networks
cyber attacks

Actively exploited server backdoor remains undetected in most organisations' networks

1 Jul 2022