June 14, 2017 by

Microsoft Patches Windows XP to Protect Against Nation-State Attacks

After Microsoft took the unprecedented step of releasing patches for Windows XP following last month’s WannaCry attacks, the software maker has released additional updates for all of versions of Windows.

While determining June’s security update for the Windows operating system, Microsoft learned of vulnerabilities which they say posed ‘an elevated risk of cyber attacks by government organizations, sometimes referred to as nation-state actors or other copycat organizations.”

As a result, Microsoft is making June’s security updates available to all of its customers, including those using older versions of its popular operating system, Windows.

“We are providing additional security updates along with our regular Update Tuesday service,” stated Microsoft’s general manager at its Cyber Defense Operations Center Adrienne Hall.

She added:

 Due to the elevated risk for destructive cyber attacks at this time, we made the decision to take this action because applying these updates provides further protection against potential attacks with characteristics similar to WannaCrypt. 

Essentially, these updates will be downloaded automatically for currently supported versions that include Windows 7, 8.1 and 10, as well as enterprise software in Microsoft Server versions between 2008 and 2016. For older versions of Windows that are no longer supported, users will be required to download and install these patches manually. Unsupported versions include Windows XP, Vista, 8 or Server 2003.

“The best protection is to be on a modern, up-to-date system that incorporates the latest innovations,” Hall wrote. “Older systems, even if fully up-to-date, lack the latest security features and advancements.”

The decision to release these patches, while understandable, has seen criticism from some quarters.

“[I]t sends a clear message to recalcitrant corporations that they can stick with Windows XP, insecure as it is, because if anything too serious is found, Microsoft will update it anyway,” wrote Ars Technica’s Peter Bright in an editorial.

He argued that Microsoft’s decision has undermined the efforts of IT technicians and staff, globally, to forego the ancient operating system in order to upgrade to newer, regularly supported versions of Windows.

Image credit: Flickr.

About the author

Image of Author

LIFARS is the global leader in Digital Forensics and Cyber Resiliency Services. Our experience spans two decades working on high profile events, often in concert with Law Enforcement Agencies around the world. Our proprietary methodology derives directly and indirectly from our experience working with and for U.S. Intelligence Agencies, Interpol, Europol, and NATO. We are solely dedicated to Cyber Resiliency and thus pay close attention to all aspects of our clients’ engagements experience while providing a strategic and integrated array of services to minimum risk and disruption while protecting your brand.

Related articles

Microsoft Sees Cryptocurrency Miners as an ‘Increasing Threat’

Software giant Microsoft has labelled malicious cryptocurrency miners as an increasing threat as...

Read more arrow_forward

Meltdown, Spectre Bugs Bring More Grief to Microsoft, AMD Users

Microsoft has temporarily paused issuing patches to the Metldown and Spectre vulnerabilities for AMD...

Read more arrow_forward

Microsoft’s Secret Bug Database was Hacked in 2013

Technology giant Microsoft never disclosed a major breach of its internal database tracking bugs, a...

Read more arrow_forward