Bernard Parsons, CEO, Becrypt, discusses how to manage the challenges when legacy software like Microsoft Windows is no longer supported by the original developer
On the 14th January 2020, Microsoft will finally end mainstream support for Windows 7. This was announced back in 2015, but Windows 7 was still so pervasive that support was extended and carried through until 2020. As Windows 7 hits the end of extended support, upgrading to Windows 10 may prove a challenge for some organisations, particularly where ageing endpoints do not meet the minimum recommended hardware specification. Fortunately for many there is an easy and cost effective alternative, thanks to the ever evolving world of open source, and of course the advances in cloud technology.
Windows 7 still runs on 39% of all PCs
That said, a number of recent surveys have highlighted just how widespread the use of Windows 7 remains, with a Netmarketshare report suggesting Windows 7 still runs on 39% of all PCs. So what will happen after the 14th January, will all those PCs just not boot? No, of course not, the PCs will still start up on the morning of the 15th but going forward without support, they won’t be patched for new viruses or security issues and any other new and emerging threats. And the mere fact that you can continue to use Windows 7 once it has gone past End of Life, doesn’t mean that the organisations who still have PCs with Windows 7 running on them should.
So, while Windows 7 will continue to work after January 14 2020, those organisations that haven’t already should start planning to upgrade to Windows 10, or an alternative operating system as soon as possible, before cyber criminals see this as a weak point in their IT environments – which over time they surely will.
Preventing a future WannaCry attack
And once cyber criminals begin to exploit unpatchable vulnerabilities in the operating systems, then organisations will panic to rectify this. You only have to imagine an outbreak of a future WannaCry ransomware attack like the one that hit the NHS back in 2017, to understand that there will be no protection or remedy should this occur and the consequences of such an attack could be crippling.
That said Windows 7 End of Life is providing many organisations with a choice between an expensive upgrade of both endpoint hardware and software, or exploring different architectural approaches, often through greater use of cloud. There is now widespread recognition that correctly configured cloud services offer benefits from both cost and security perspectives, as there are few organisations able to invest in security controls and processes equivalent to those of the major cloud platform vendors.
Where organisations do migrate data to the cloud, or simply switch to virtualised desktop and web delivered environments, the endpoint effectively becomes a platform to deliver a browser, such as Chrome, providing a familiar user interface with all the client functionality needed. Consequently, there are a number of simple alternatives for Windows 7 replacements, including the open source Linux platform.
Open Source Linux platforms
Resulting from work undertaken with UK government facing the challenge of securely and cost effectively upgrading a range of ageing endpoint devices, here at Becrypt we developed Paradox, a Linux-based desktop environment that removes any need for organisations to maintain Linux skills. The good news is that Paradox can be deployed to transform existing devices, such as Windows 7 endpoints, into secure and easy to use browser-based endpoints. Application and OS configuration and patching is performed through the Becrypt Enterprise Management platform hosted on premise or consumed as a cloud-based service. A key feature of Paradox is resilience, with local redundancy and an automatic failover capability for each device, allowing organisations to confidently maintain uptime and service levels, even on old equipment.
Delivering secure services from legacy IT
What we are finding here at Becrypt is that organisations are not only using Paradox to help them transform to cloud-based services, but they are also using it to deliver secure services from legacy IT.
It is worth noting that every Windows product has a lifecycle. The lifecycle begins when a product is released and ends when it’s no longer supported. Knowing key dates in this lifecycle helps organisations make informed decisions about when to update, upgrade or make other changes to their software. I hope those organisations who are running Windows 7 on their PCs already have plans in place to deal with the lack of support but, if you don’t, as outlined in this article there are cost effective options and routes to explore – but the clock is ticking!