Home Technology

FBI issues warning over Windows 7 end-of-life – ZDNet

Ads

The FBI says companies running Windows 7 systems are now in greater risk of getting hacked due to a lack of security updates.
Catalin Cimpanu was a security reporter for ZDNet between Sep 2018 and Feb 2021.

The Federal Bureau of Investigation has sent a private industry notification (PIN) on Monday to partners in the US private sector about the dangers of continuing to use Windows 7 after the operating system reached its official end-of-life (EOL) earlier this year.
“The FBI has observed cyber criminals targeting computer network infrastructure after an operating system achieves end of life status,” the agency said.
“Continuing to use Windows 7 within an enterprise may provide cyber criminals access in to computer systems. As time passes, Windows 7 becomes more vulnerable to exploitation due to lack of security updates and new vulnerabilities discovered.
“With fewer customers able to maintain a patched Windows 7 system after its end of life, cyber criminals will continue to view Windows 7 as a soft target,” the FBI warned.
The Bureau is now asking companies to look into upgrading their workstations to newer versions of the Windows operating system.
To this day, Microsoft still allows Windows 7 systems to be upgraded to Windows 10 at no cost — even if this offer officially ended in July 2016.
However, in some cases, the PC’s underlying hardware may not support the (free) upgrade to a much more powerful system like Windows 10, a challenge that the FBI acknowledged in its alert, citing costs that companies might need to support to buy new hardware and software.
“However, these challenges do not outweigh the loss of intellectual property and threats to an organization,” the FBI said — suggesting that companies should keep an eye on the bigger picture down the road and how future losses from possible hacks might easily outweigh today’s upgrade costs.
The agency specifically cited the previous Windows XP migration debacle as the perfect example of why companies should migrate systems as soon as possible, rather than delay.
“Increased compromises have been observed in the healthcare industry when an operating system has achieved end of life status. After the Windows XP end of life on 28 April 2014, the healthcare industry saw a large increase of exposed records the following year,” the FBI said.
Furthermore, the FBI also cited several powerful Windows 7 vulnerabilities that have been frequently weaponized over the past few years.
This includes the EternalBlue exploit (used in the original WannaCry and by multiple subsequent crypto-mining operations, financial crime gangs, and ransomware gangs) and the BlueKeep exploit (which allows attackers to break into Windows 7 devices that have their RDP endpoint enabled).
The agency said that despite the presence of patches for these issues, companies have failed to patch impacted systems. In this case, replacing older and abandoned systems may be the best solution overall.
While companies are looking into upgrading systems, the FBI recommends that they also look into:
The best Linux distros for beginners: You can do this!

The 7 best cybersecurity certifications: Become a security expert

The 7 best soundbars: Turn it up

The 7 best photo editing apps: From beginners to pros

The best Windows laptops: Top notebooks, 2-in-1s, and ultraportables

The best stylus: Top stylus pens for notes and drawing

Xiaomi 12 review: A compact flagship-class phone, missing some key features

Get up to speed with Microsoft Azure with over 50 hours of training for $39

The best 5G laptops: Top notebooks with the latest cellular connectivity

Please review our terms of service to complete your newsletter subscription.
You agree to receive updates, promotions, and alerts from ZDNet.com. You may unsubscribe at any time. By joining ZDNet, you agree to our Terms of Use and Privacy Policy.
You agree to receive updates, promotions, and alerts from ZDNet.com. You may unsubscribe at any time. By signing up, you agree to receive the selected newsletter(s) which you may unsubscribe from at any time. You also agree to the Terms of Use and acknowledge the data collection and usage practices outlined in our Privacy Policy.
© 2022 ZDNET, A RED VENTURES COMPANY. ALL RIGHTS RESERVED. Privacy Policy | Cookie Settings | Advertise | Terms of Use

source

Ads
Previous articleWhich Will Happen First, Bitcoin At $100,000 Or Shiba Inu At $0.001? – Benzinga
Next articleKyte Launches Tesla Model 3 Subscriptions – Green Fleet – Auto Rental News Magazine