Given the multitude of severe security vulnerabilities already disclosed in 2018, it’s important to note that Sunday, January 14th, 2018 marked an important date in Windows operating system history.
This date started the two-year countdown until the end of extended support for Windows 7, the most widely used operating system today. January 14th, 2020 will see the last remaining security updates released for Windows 7.
Recent security vulnerabilities serve as important reminders that in order to maintain security on endpoints and to stay HIPAA compliant, businesses need to stay current with supported operating system versions running on their endpoints and servers alike.
In 2017, Microsoft uncharacteristically released patches in response to the WannaCry/Petya threats for unsupported operating systems. However, there is no indication the same will be done for the Meltdown/Spectre vulnerabilities that were disclosed at the beginning of 2018, or any future vulnerabilities yet to be disclosed.
Because refreshing hardware and software can be a challenge for organizations, VCPI recommends using this information and similar future incidents to help you prepare and create future budgets. A threat can strike at any time, and investing in security now can save you fines later.