Businesses still running Windows XP are six times more likely to become infected by malware than users running new operating systems (OS) like Windows 8, according to a new report from Microsoft Corp.

And although Microsoft is ending support for Windows XP on April 8, 2014, a solid 21 per cent of computers in Canada were still running Windows XP as of this month. However, the most popular OS by far is Windows 7, with about half of Canadian users running it on their PCs, according to figures from StatCounter, a web analytics company.

In a lengthy report released Oct. 29, Microsoft researchers found there wasn’t a huge gap between the amount of malware encountered by computers running different operating systems. In the first half of 2013, about 16 per cent of computers still running Windows XP encountered malware. About 19 per cent of computers running Windows 7 ran into malware, while 12 per cent of computers on Windows 8 had the same problem.

(Image: Microsoft). Infection rates (left) and malware encounter rates. Click to enlarge.
(Image: Microsoft). Infection rates (left) and malware encounter rates. Click to enlarge.

However, those running XP were much more likely to actually be infected, with infection rates topping out at 9.1 computers cleaned for every 1,000 computers scanned. By contrast, that infection rate dropped to 4.9 for Windows 7 and just 1.6 for Windows 8.

For malware zeroing in on Windows XP users, the top three types of malware were Sality, Ramnit, and Vobfus. Sality is a family of malware targeting executable files using the extensions .scr or .exe, focusing on stealing personal data or lowering PC security settings.

Ramnit attacks executable files, Microsoft Office files, and HTML files. It can also spread to removable drives, stealing sensitive information like File Transfer Protocol credentials and browser cookies. It can also await instructions from a remote attacker.

Vobfus, a family of worms, spreads over network drives and removable drives, downloading and executing files that may also contain malware.

Still, Microsoft did have some tips for IT departments looking to avoid threats to their systems. The top one may be to move off Windows XP, but beyond that, the report called for running regular software updates, as well as considering a third-party update mechanism that can run non-Microsoft-related updates.

The report also recommended using the SmartScreen Filter if an organization’s employees are using the Internet Explorer browser, moving to a 64-bit hardware architecture, and figuring out when Java can be used and when it can be avoided.

Making use of AppLocker might also be a good plan, as it can block computers from installing unwanted software like Java or peer-to-peer applications. Microsoft also provides an Enhanced Mitigation Experience Toolkit to IT departments to try to cut down on the number of exploited vulnerabilities in its software.

Share on LinkedIn Share with Google+
More Articles

  • Yes. It’s really bad the Microsoft is ending the support for Windows XP, and XP is one of the best OS of Microsoft, as the report say, still many of the Canadian are still using this OS and they need to update all of them.

    • Mike


      Really the support is meaningless as long as you have good 3rd party security sofware installed Windows XP is quite safe.
      MS uses that “Support” routine all the time. It is really just marketing. Nothing else. Since when was MS’s security any good? But apparently a lot of people are fooled by this.
      As a techie, I get asked about this “Support” myth all the time.

  • Tony

    More fear mongering by Microsoft, desperate to sell its crappy new OS.

  • mcvane

    I’ve had to do system restores on more Vista and Windows 7 OSes than I ever have for XP and I’ve been doing this for more than 20 years. This is just marketing hype from MS. Just keep on hand a good set of security tools, and keep Windows XP systems clean…

  • Niagara

    This article is hardly unbiased considering the source of the report. If I didn’t know any better, I’d say this smells like a plant so that MS can be freed of the last XP holdouts. But just to make them happy, YES, I am migrating from XP this weekend! I’m going to Linux on the desktop. And, of course, MS won’t mention that computers running MacOS (based on Unix) and Linux don’t get viruses and malware. What they have done is admit in their report that their products are highly vulnerable to cybervandalism.

  • Cheap
    , refurbished , used , discount Dell laptops available here in cheap prices
    with good specs