Windows XP systems: Outdated systems are an incalculable risk for medium-sized businesses. Many medium-sized companies still use computers with the outdated operating system.
In the manufacturing industry in particular, many control computers only run under Windows XP or other outdated operating systems. This makes it easy for cyber criminals to attack. The computers should be removed from the network as quickly as possible or at least effectively separated. Otherwise there is a risk of damage from attacks that can quickly threaten the very existence of the company.
Critical systems are still running Windows XP
In many companies, these ancient computers are active all year round. Critical systems still run with Windows XP, server systems are completely out of date and manufacturer support has expired for years. That is irresponsible, because it endangers the security and thus also the economic success of the company ”, says Tim Berghoff, Security Evangelist at G DATA CyberDefense. “Updating the affected systems is difficult, in some cases only a new acquisition or the separation of the network is promising. The fact is, however, that there is an urgent need for action by companies, otherwise there is a risk of high image and economic losses. "
Windows XP lives on somehow
Millions of new computers are sold worldwide every year. Nevertheless, the proportion of computers with a Windows XP operating system is 0,8 percent. Many companies still rely on a system that has not been supplied with updates for a long time and whose source code has partially been leaked.
According to the experience of the security experts at G DATA CyberDefense, the problem keeps showing up. For example, a company buys a new industrial printer that can print paint samples for cars. This enables customers to understand what the paintwork of a car feels like. This printer costs several million euros and is controlled by an XP system. This example shows: Outdated operating systems can be found on many computers for controlling industrial machines or entire production plants. Often the control software for the machine that controls the system is not compatible with current Windows versions.
Old servers are still in use
Outdated servers are another problem: According to a study by an IT company, more than half (58 percent) of all Windows servers are out of date and are no longer provided with the necessary updates. Safe operation is impossible and an exchange is urgently needed. The company had checked all servers accessible on the Internet. In many cases, such systems are also kept alive to ensure backward compatibility with another system. In the worst case, this results in a fatal cascade of security gaps.
How to sort out ancient systems
Many companies are in a fix without the old Windows XP computer. In addition, companies are often bound by contractual terms or depreciation periods or have to deal with high re-licensing costs when updating. Another problem: Sometimes the manufacturer no longer exists and an update is not possible or a new version is incompatible with a current operating system. Then only a new acquisition will help.
In general, the implementation of an update is associated with a high level of effort. Production, which often runs without interruption, has to be stopped for this. Updating is therefore difficult and expensive. In addition, certifications and regulations hinder an update process: if the environment has been approved in a certain state, new software cannot simply be installed. Therefore, investing in an expensive new acquisition is an alternative.
Separate network
Another possibility is the consistent separation of the network in which the affected computers run. This means that an attacker cannot access the control of the production IT from the management network. This system should be hardened, i.e. if possible not have an Internet connection and only be equipped with the most necessary services. In addition, a hard set of rules should be established, which ensures that only a minimum of necessary data traffic is possible.
“Whichever path a company takes, something has to happen. Otherwise there is a risk of serious image loss if it becomes known that an attack was successful due to outdated operating systems. So it's worth tackling the problem and ensuring more security, ”says Tim Berghoff, G Data.
More on this at GData.de