The old Windows Server can still protect itself against hackers

If you're using a Windows Server 2003-based computer, you're having a big problem. Your computer will be vulnerable to hackers. That's because update patches mostly ignore Windows Server 2003 computers. 'I can teach my mother how to exploit some vulnerabilities,' said Jacke Williams, founder of security service provider Rendition Infosec. . 'They are not complicated'.

Experts encourage affected businesses to upgrade to new Windows OSs, as they have many security patches to protect against the threat. However, some businesses cannot because they still rely on old software, can't run on new operating systems. 'It is often very expensive to upgrade', he said, 'the machine is still running well, but must be controlled with Windows Server 2003'.

According to Shodan - device search tool, more than 500,000 Windows Server 2003 machines are vulnerable to attacks on the Internet. But Williams estimates that there are more machines running behind the company's firewall.

So for those who are unable to update, here are some ways to safely protect computers running Windows Server 2003.

The old Windows Server can still protect itself against hackers Picture 1
Many businesses still use Windows Server 2003 computers

Threats

Spyware contains many Windows-based exploits, the hack program targets the protocol used to share files Windows Server Message Block (SMB). They work by making the OS execute remote code, thereby installing malware on the victim's computer.

Network segmentation and management

Companies using old Windows Server can still protect themselves. Williams suggests that they do not use the background to hide the server behind the firewall, but use a technique called network segmentation.

This can restrict access to important servers and ensure only system managers can control them. 'Instead of having 20,000 people in the company visit, drop it to 20,' said Williams. Even if hackers break the firewall, they can only access every small partition of the enterprise network.

Network segment is inexpensive. Business routers often have access control capabilities, limiting how far the computer can communicate, Williams said.

Businesses should consider managing vulnerable servers or at least servers that contain important information. Any unusual data traffic going through it may be a sign that a hacker has been attacked.

Consider risk

To keep the malicious activity from the system, whitelists can be used, it is advised by Jason Leitner, president of Below0Day, IT security service provider.

Whitelists only allow trusted applications to run on the computer. This is the opposite of antivirus products when these tools blacklist dangerous software based on indicators.

Businesses can make backups of sensitive data on these machines. A growing threat in recent years is ransomware extortion code. It works by infecting the machine, encrypting all data on it. To get back, the victim must pay the extortion charge, usually bitcoin.

However, according to security experts, even if there are these ways, the best solution to protect Windows Server systems is to upgrade. Even if it is expensive, but an investment can help avoid carpeting. future leak or loss of data. Tiago Henriques, CEO of BinaryEdge security company, recommends that businesses calculate more 'The cost of upgrades and damages suffered by the company and customers when hacked, which side is greater?'