Why Microsoft Shares the Blame for the Cyber Attack.

Many folk have poured derision on people/business's still using Windows XP. After all, general support for XP was discontinued three years ago. Some further support was available to large organisations but essentially the operating system was abandoned by Microsoft in 2014. So,
many would say it would be foolish to continue with XP and anyone still using it deserved to get caught by this criminality.

Yet there is another story here.

Windows XP came out in 2001 and was initially truly awful. Yet over the following 13 years bugs were fixed and back doors closed. By 2010 Windows XP had hardened and was ( and still should be ) a robust and bug free operating system. XP has many applications far beyond mere desktop and laptop PCs. It is also extensively used for equipment control.

As an example, I understand that one of the problems that hit the NHS was the crippling of some body scanners that had Windows XP integrated into their design.

Microsoft abandoned XP because they wanted to force people to buy their later operating systems and associated products.  They ignored the fact that many could not afford the change (which usually required a hardware switch as well).

But as well as poorer desktop/laptop users, many companies/organisations simply could not move long established and complex equipment to a new operating system.

Microsoft could have easily offered (and profited from) an annual support fee of (say) $5 per machine. Bear in mind that after 16 years since it was launched, the code base in XP was hardened and reliable. New patches would be far fewer than with a new product. Code maintenance would require a smaller team. They would be working on an known and well established code base.  

But No. Microsoft decided to walk away.

Microsoft's action to stop publishing updates/bug fixes was both immoral and irresponsible.

In my opinion, if you produce a product on which people lives and livelihoods depend, irrespective of whether it is hardware or software you have a moral obligation to offer support for that product for more than a mere 6 years after it becomes obsolescent.

It appears Microsoft have now relented and produced a new security patch for XP (I wont comment on Horses and when to bolt gates). I hope they now realise the foolhardiness of their abandonment and step up to their responsibilities by re-instigating support for XP.

AS for the scum-bags who used this exploit I do hope they are caught and go to jail for very many years, or catch a bullet. Preferably the latter.

No comments: