On April 8, 2013, one of the world’s largest software providers, Microsoft went public with news that it will be shutting off support to the Windows XP globally, a system it released 13 years ago and one which is placed among its highest grosser, with over 1 billion copies sold to date.
Perhaps a lot of users didn’t understand the implication.
End of support for Windows XP was necessary, as the system had started losing the needed capabilities to withstand sophisticated threats. “At some point an older model of any product will lack the capability to keep up and becomes antiquated. Obsolescence for Windows XP is just around the corner,” wrote Tim Rains, a Contributor for Microsoft’s official security blog and a Director at Trusthworty Computing.
Pegging the deadline at April 8th 2014, exactly a year after its announcement, was strategically telling – the software giant needed to give ample time to ensure hitch-free migration. However, as at the point of writing this and over a month after the grace period had elapsed, users are still battling to get off Windows XP globally despite warnings of phishing (illegally acquiring sensitive information online) threats and data exposure.
And what does this mean for individuals or institutions still using the Windows XP ?
“It means you should take action,” read a statement on Microsoft’s website.
“After April 8, 2014, Microsoft will no longer provide security updates or technical support for Windows XP. Security updates patch vulnerabilities that may be exploited by malware and help keep users and their data safer.”
Much has been made of the threat posed to personal computers, data holding systems and software driven facilities handled by multinational organizations. The most significant to Nigeria, Africa’s largest economy, is the vulnerability of ATMs (Automated Teller Machines) within the country.
Nigeria has over 7000 functioning ATMs, 70 percent of which are susceptible to threats, following delayed upgrades by local banks, according to an insider at Microsoft Nigeria. This situation raises concerns of safety of personal banking information.
In a bid to examine the situation at hand, and possible consequences of further delays in upgrade, Ventures Africa reached out to Microsoft Nigeria’s Chief Technology Officer, Olayinka Oni. Here’s what he had to say:
Q: What does it imply when Microsoft says it has stopped supporting Windows XP?
Olayinka: End of support means that software updates for Windows XP will no longer be distributed by Microsoft or its hardware partners. This includes security updates that help protect PCs from viruses, spyware, and other malicious software that can steal or damage personal information. It also includes maintenance updates that improve reliability and performance and ensure that Windows XP works well with other software and hardware.
Retiring a product is a normal part of the product life cycle. Windows XP was released in October 2001, and its development began in the late 1990s. While most Microsoft software is supported for 10 years, Windows XP has been supported for more than 12 years, longer than any other Windows version. It’s been a great run for this popular and even beloved operating system; it’s now time for Microsoft, along with our hardware partners, to retire support for Windows XP so we can focus on supporting more recent technologies for delivering great customer experiences.
Q: How real is this threat to ATMs following the halt of support?
Olayinka: Whilst the ATMs will likely continue to function but, over time, the security and performance of the ATM will be affected. The ATM will become less compatible with other products and have less protection against viruses, spyware and other malicious programs. That’s why Microsoft had been alerting customers since 2010 about the EoS deadline.
Potential risks more specifically include:
Security: Without critical Windows XP security updates, the ATM may become vulnerable to harmful viruses, spyware, and other malicious software which can steal or damage business data and information. Anti-virus software will also not be able to fully protect once Windows XP itself is unsupported.
Compliance: Businesses that are governed by regulatory obligations such as Payment Card Industry Data Security Standard (PCIDSS) may find that they are no longer able to satisfy compliance requirements.
Independent Software Vendor (ISV) Support: Many software vendors will no longer support their products running on Windows XP as they are unable to receive Windows XP updates.
Hardware Manufacturer support: Most hardware manufacturers will stop supporting Windows XP on existing and new hardware. This will also mean that drivers required to run Windows XP on new hardware may not be available.
Q: Why were Nigerian banks slow to upgrade their systems, despite a year-long public announcement by Microsoft that support to Windows XP will be stopped April 2014?
Olayinka: No definite answer, but could be because they were reviewing options available to them which includes:
Upgrading their Windows XP machine to the new Windows – Windows 8.1 or 7… [or] purchasing a new Machine (ATM/PC) running a new and modern windows.
Q: Aside ATMs, which other systems of significant value to Nigerians and Africans are susceptible to hackers and illegal activities?
Olayinka: Without speculating, just about any system that runs a windows XP operating system is vulnerable. Whether it be systems in Public Security/National Security; Aviation Management/Monitoring; Financial Regulatory &U Monitoring systems.
Q: Microsoft has announced that it is engaged with banks to upgrade them to a supported operating system. How quickly will this be completed?
Olayinka: There is no generic answer, migration plan and duration is relative and a case-by-case situation. Timelines could vary from 1-6 months depending on resource availability and readiness/appetite of each organization for change.
Q: What temporary measures can be put in place to guaranty safety of banking information before a comprehensive upgrade is completed?
Olayinka: They could get a Custom Support Agreement designed for customers who need additional time to complete their migration to a supported product. Details and eligibility criteria can be obtained from Microsoft and its partners.
- Latest
- Trending
