UK Spy Chief Blames Microsoft for WannaCry as It Retired Windows XP “Too Soon”

Exterminator

Level 85
Thread author
Verified
Top Poster
Well-known
Oct 23, 2012
12,527
Microsoft is the one to blame for the WannaCry ransomware infection, says former head of GCHQ Sir David Ormand, as the software giant pulled Windows XP too soon and left companies and organizations with no protection against this kind of threats.

In a letter to The Times, Ormand explains how Microsoft created an unnecessary risk for its customers, including here the British National Health Service (NHS) whose computers were compromised by WannaCry as well.

“Should Microsoft have stopped supporting Windows XP so soon, knowing that institutions had invested heavily in it (at the urging of the company at the time)?” he said.

WannaCry and Windows risks
WannaCry is a new type of ransomware based on a Windows vulnerability that was discovered and kept secret by the United States National Security Agency (NSA). Hacking group Shadow Brokers managed to steal the security flaw and decided to make it public earlier this year.

Microsoft patched the vulnerability with Windows security updates that were released according to its monthly update rollout called Patch Tuesday, so once the WannaCry outburst started, systems running full up-to-date Windows were completely secure.

On the other hand, systems that are no longer receiving support, as it’s the case of Windows XP, were left vulnerable to attacks, with Microsoft deciding to publish a dedicated patch for these versions when reports of the ransomware quickly spreading across the world were received.

Microsoft itself blamed the NSA for holding Windows vulnerabilities and not reporting them to the company, but UK’s Ormand says the Redmond-based software giant is at fault for putting everyone at risks.

And it’s all because it decided to pull support for Windows XP in April 2014. Launched in 2001, Windows XP no longer receives support since 2014, with the company offering custom support to companies that are yet to upgrade, including to the NHS, which however decided not to renew the contract last year.

Windows XP was originally projected to reach end of support in 2009, two years after the launch of Windows Vista, but Microsoft pushed it to extended support and provided security patches for an extra 5 years because it was still widely used at that time. In the last 12 months of support, however, the software giant repeatedly warned organizations and users of the incoming end of life, providing solutions, documentation, and support for migrating to newer Windows.

NSA and companies at fault
This is why Misha Govshteyn, founder and SVP at Alert Logic, thinks that Microsoft is not at fault for WannaCry, but only the NSA for not reporting the bug and companies for running old software.

“This is a classic game of news spin from all parties involved, but the GCHQ position is especially rich in alternative facts,” he said.

“If the NSA really wanted to be responsible, they would have contacted technology vendors shortly after they realised their toolkits were stolen. Doing so would have given technology companies more time to respond and consumers more time to patch. Instead, NSA chose to play the game of chicken with Shadow Brokers and allowed, of all people, Julian Assange to be the disclosing party. This is the least defensible decision in this whole saga.”

Despite end of support being reached more than 3 years ago, Windows XP remains the third most popular desktop OS worldwide with a share of nearly 7 percent.

Putin Blames USA for WannaCry Global Cyber Attack

And the blame game begins :D
 

ElectricSheep

Level 14
Verified
Top Poster
Well-known
Aug 31, 2014
655
Corporate greed comes to mind in these cases, it's just a money making exercise for M$ by pushing their new OSes.
As is common knowledge, a lot of corporations still have a framework supported by XP so yeah they pulled the plug on that too soon:(
 

RVS2

Level 3
Verified
Oct 17, 2016
118
Don't know much about uk, but a 1st world country with an under-funded nhs was surprising. Then again the latest wannacry variant would get an updated os too.

It could have attacked many countries but chose Europe, China and Japan. Especially russia's interior ministry, which sort of stands out amongst corporations mostly.
Could have targeted places like africa and south-east asia which have poorly funded computer systems but not much money to be made I guess lol.
 

Arequire

Level 29
Verified
Top Poster
Content Creator
Feb 10, 2017
1,822
Microsoft is the one to blame for the WannaCry ransomware infection, says former head of GCHQ Sir David Ormand, as the software giant pulled Windows XP too soon and left companies and organizations with no protection against this kind of threats.
Ah yes, "too soon".
>15 years
Microsoft gave businesses and users plenty of time to migrate from XP. They made it abundantly clear how vulnerable XP would be after they ended support for the OS. Even with the poor reception to Vista and Windows 8, Windows 7 was released 7 years ago and Windows 10 almost 2 years ago. I hope this acts as a wake up call for them.
It's also rich that this is coming from a former spook who no doubt participated in the hoarding of vulnerabilities that weren't reported to vendors (especially Microsoft who's OS holds almost 85% market share on non-mobile operating systems) knowing full well how dangerous they could be if exploited by blackhats or foreign nations.
 

DJ Panda

Level 30
Verified
Top Poster
Well-known
Aug 30, 2015
1,928
I feel kind of annoyed that people always blame MS some problems. They are not perfect, but it is more on the NSA for hoarding all these Windows exploits. 15 years is long enough for XP. The companies are so concerned about $. I think it would have been less money to upgrade all the computers to a new OS than having to pay 300$ per computer from ransom.
 

7sean68

Level 1
May 12, 2017
11
I think there is a new version of WannaCry without a kill switch, so that is not a safe solution. Also, the kill switch is in the SMB worm carrying the malware not the malware itself so it can spread by other means
WannaCry Kill-Switch(ed)? It’s Not Over! WannaCry 2.0 Ransomware Arrives
wannacry-2-ransomware-attack.png
 

Handsome Recluse

Level 23
Verified
Top Poster
Well-known
Nov 17, 2016
1,242
I feel kind of annoyed that people always blame MS some problems. They are not perfect, but it is more on the NSA for hoarding all these Windows exploits. 15 years is long enough for XP. The companies are so concerned about $. I think it would have been less money to upgrade all the computers to a new OS than having to pay 300$ per computer from ransom.
Maybe that's the reason they're not Fortune companies.
 
5

509322

Technically, Microsoft products are implicated directly or indirectly in the vast majority of infections. So stop using Microsoft products entirely...
 
  • Like
Reactions: Handsome Recluse
5

509322

... it is more on the NSA for hoarding all these Windows exploits.

Government agencies the world over will continue to hoard exploits. Exploits are now considered absolutely essential to fulfilling their mandates. Besides, there is no legal requirement that anyone reveal\report exploits to either the software publisher or the public. Try to make it law - by pushing a bill through any government legislature - that requires government agencies to report vulnerabilities too and it will just never happen.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top