Feeds

Fine! We'll keep updating WinXP's malware sniffer after April, says Microsoft

Venerable, vulnerable version given security software reprieve

Protecting users from Firesheep and other Sidejacking attacks with SSL

Microsoft has capitulated to the legions of users who are still running Windows XP once again, by extending support for its antimalware software for the aging OS into 2015.

In the past, Redmond has warned that it would discontinue support for Microsoft Security Essentials, Forefront Client Security, Forefront Endpoint Protection, System Center Endpoint Protection, and Windows Intune running on Windows XP on the same day that support for the OS itself ends – April 8, 2014.

That would mean that Windows XP users would immediately stop receiving new malware signatures and engine updates on that date, even though Microsoft would still be providing updates for the same software running on Windows Vista and later.

In a blog post on Wednesday, however, Microsoft's Malware Protection Center group said the software giant has decided to give XP users one more reprieve – but not too long a one.

"To help organizations complete their migrations, Microsoft will continue to provide updates to our antimalware signatures and engine for Windows XP users through July 14, 2015," the post explained, which gives customers just 14 more months to upgrade.

XP users shouldn't breathe too easy, though. Those 14 months are expected to be dangerous ones, with hackers descending upon XP's final, never-to-be-patched vulnerabilities like a swarm of identity-thieving locusts. And each new security update that Microsoft releases for Windows Vista or later could potentially become a how-to manual for new exploits, should the same flaws exist in XP.

"Our research shows that the effectiveness of antimalware solutions on out-of-support operating systems is limited," Microsoft's malware mavens write. "Running a well-protected solution starts with using modern software and hardware designed to help protect against today's threat landscape."

Plenty of people have yet to heed that advice, however. Although the New Year saw a surge of upgrades, as we go to push the big, red Publish button on this story, Windows XP is still thought to be running on just under a third of the world's PCs. ®

The next step in data security

More from The Register

next story
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
THREE QUARTERS of Android mobes open to web page spy bug
Metasploit module gobbles KitKat SOP slop
'Speargun' program is fantasy, says cable operator
We just might notice if you cut our cables
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
Greater dev access to iOS 8 will put us AT RISK from HACKERS
Knocking holes in Apple's walled garden could backfire, says securo-chap
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.