Forget for a moment the impending cryptoapocalypse because of aging and/or subverted encryption standards and algorithms. Microsoft this week put out the word on the scourge that is Windows XP.

The latest Microsoft Security Intelligence Report goes to great pains to encourage users to move off the soon-to-be unsupported version of Windows. The report, reflecting activity collected and monitored by its security tools from January to June, points out that XP computers are six times more likely to be infected than younger, more robust versions of the OS.

“Older software is easier to break into and over time, cybercriminals learn how to bypass mitigations,” said Microsoft spokesperson Holly Stewart. “XP is no different. A good example is DEP (Data Execution Prevention) which was not commonly bypassed when it was released. The utility of that mitigation has degraded year over year.”

DEP and Address Space Layout Randomization (ASLR) are memory protections built into Windows starting with Vista. They’re meant to ward off buffer overflow attacks and frustrate hackers from being able to inject code into predictable areas of memory in the operating system. In 2006, there was one DEP bypass for every 13 vulnerabilities; that’s done almost an about-face as of 2012, Microsoft said, with six bypasses happening for every three CVEs. Hackers have been found ingenious means of beating DEP and ASLR, stringing together exploits for numerous vulnerabilities to bypass these protections and jeopardize data stored on the host machine.

“Newer software is less appealing to cybercriminals,” Stewart said. “Advanced technology is harder to exploit, and there’s been a long list of platform security improvements. XP, however, is not equipped to provide these innovations.”

Microsoft will no longer support XP after next April, meaning it will no longer provide security patches and advisories for vulnerabilities discovered on the platform. Yet according to the latest desktop operating system market share numbers, XP installations trail only Windows 7; Netmarketshare.com says XP is still running on 31 percent of desktops. Windows 7 leads with 46.4 percent.

“From a security perspective, this is a really important milestone,” Stewart said. “Attackers will start to have a greater advantage over defenders.  There were 30 security bulletins for XP this year, which means there would have been 30 zero-day vulnerabilities on XP [without support].”

Microsoft is also using a new metric, comparing infection rates with what it’s calling an encounter rate. As explained in the Security Intelligence Report, “encounters” are the number of times one of the companies security tools such as the Microsoft Malicious Software Removal Tool comes up against a piece of malware. Previously, Microsoft would count what it called Computers Cleaned per Mile, or CCM. Thes was the number of computers cleaned for every 1,000 times the MSRT was tripped by a piece of malware.

Using the new metrics, Microsoft demonstrates that XP users running SP3 are six times more likely to become infected than someone running Windows 8 RTM on their machine—9.1 XP computers cleaned per 1,000 versus 1.6 Windows 8 machines. As for the encounter rate, the numbers aren’t too staggeringly different with 16.1 percent of XP SP3 machines reporting an encounter versus 19.1 percent of Windows 7 machines and 12.4 percent of Windows 8 computers.

“The encounter rate gives you an idea of how frequently a customer is exposed to a malware threat,” Stewart said. “We’ve reached a tipping point where this dated architecture can’t be relied upon.”

Categories: Microsoft

Comments (8)

  1. David
    1

    How many XP computers are still left running the administrator identity for casual use and WEB surfing without a password? (Default user account that first popped up when the computer was new or the first user account that pops up after a reinstall)

  2. David Usiri
    2

    Which system of computers can be used to replace the XPs.Does it mean that all exsisting XPs to be junked?Any nearfuture remedy other than removing from the system?

    • Brian Donohue
      3

      Microsoft won’t be fixing bugs in or shipping updates to XP. You may want to move to Windows Vista, 7, or 8 if you can.

  3. David
    4

    It is my impression that the newer Windows versions use more CPU resources and more memory than XP so that old computers would be slowed if the newer Windows were installed on them?
    Also more demand on the video card? (or worse things for computers without a video card “integrated graphics”)

  4. Jake Elmer
    5

    Replace it with Linux and Wine. That what we did at work with a bunch of XP machines in production. Safer, more reliable and supported the next century I guess :)

  5. will merrick
    6

    I noticed that our local GP practice is still using XP. Scary considering the amount of medical data on their system!

  6. Fredrik
    7

    There are som greate whitelisting solutions out there. Whith a good WL-solution installed, XP can live for many more years

  7. robert
    8

    The only way to keep clean your computer is to Sanitize the HD and install the Windows. No firewall or windows updates can protect your computer from INTRUDERS. Many web sites dictate you to turn on Cookies, (to open the back door for them). So do not keep anything in your computer. Use a TEMP folder and transfer anything you download, or create to a memory stick, or for sensitive things use a 16GB class 10 micro SD card. Frequently wipe out the hard drive with Dban Boot and Nuke. Three passes on a 250GB HD is completed in 3 hours. Make sure to put a fan under you computer because the cleaning is completed under the DOS, and computer overheats and shut down in the middle of the process. Before formatting the HD make sure there are no problems with the HD sectors. Run from Command COM CHKDSK then CHKDSK /F and after CHKDSK /R before formatting with Boot and Nuke. Finally reinstall windows, or the cloning of your HD with drivers and most important utility programs. I use two identical laptops with windows XP, can swap the HD and have the disk with factory program to rewrite the sectors of HD and Flash the BIOS. This 2 laptops are exposed in more insecure web sites where a can get most information from unsecured sites. With another laptop with windows 7 I take less risks and the other with windows 8 is used for skype, and fun.

Comments are closed.