Feeds

Microsoft issues less-than-helpful tips to XP holdouts

Don't click on bad stuff and back up a lot, Redmond tells refuseniks

Intelligent flash storage arrays

Microsoft seems to have realised what most everyone figured out years ago: come April 9 there will still be millions upon millions of computers running Windows XP and therefore open to all sorts of potential attacks.

Redmond's recognition of the problem appears in a new ”Cyber threats to Windows XP and guidance for Small Businesses and Individual Consumers” document, that identifies five likely risks XP holdouts will face and offers advice on how they might be ameliorated.

Here's the list of threats and our translation of Microsoft's answer:

Risk Mitigation Flaw in Microsoft's argument
1. Surfing the Net Just don't visit any dangerous websites You don't know upgrading from XP is a good idea and you're expected to know how to avoid a dodgy website?
2. Malware links in email and IM Don't click See above
3. Removable drives can carry malware Don't plug in any USB storage Not even this stick my grandson says has cute cat photos on it?
4. Worms targeting 0-days we won't fix Review your firewall exceptions WTF? Who threw the switch from general consumer advice to sysadmin-land?
5. Ransomware Back up more often so you can do a clean reinstall But what if my backup is on the USB device you warned against in Risk 3?

If you never connect to a network, Microsoft's mitigations would probably mean you could use your XP machine safely. For the rest of us, learning about firewall exceptions looks like the best alternative, unless you are willing to follow Microsoft's oft-uttered advice that the best thing XP users can do is go buy a new computer as soon as is feasible.

Or install Linux, an operating system utterly likely to leave an XP machine eminently usable and secure. Whether many of the kind of folks who need the kind of advice Microsoft is now dishing out would find Linux an equivalent experience is a matter for other minds to consider. In the comments, perhaps? ®

Internet Security Threat Report 2014

More from The Register

next story
Renewable energy 'simply WON'T WORK': Top Google engineers
Windmills, solar, tidal - all a 'false hope', say Stanford PhDs
Bond villains lament as Wicked Lasers withdraw death ray
Want to arm that shark? Better get in there quick
The next big thing in medical science: POO TRANSPLANTS
Your brother's gonna die, kid, unless we can give him your, well ...
SEX BEAST SEALS may be egging each other on to ATTACK PENGUINS
Boffin: 'I think the behaviour is increasing in frequency'
NASA launches new climate model at SC14
75 days of supercomputing later ...
Britain's HUMAN DNA-strewing Moon mission rakes in £200k
3 days, and Kickstarter moves lander 37% nearer takeoff
Reuse the Force, Luke: SpaceX's Elon Musk reveals X-WING designs
And a floating carrier for recyclable rockets
Simon's says quantum computing will work
Boffins blast algorithm with half a dozen qubits
prev story

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
The hidden costs of self-signed SSL certificates
Exploring the true TCO for self-signed SSL certificates, including a side-by-side comparison of a self-signed architecture versus working with a third-party SSL vendor.