What you need to know
- Windows 7 and Windows Server 2008 will reach end-of-life in January, 2020.
- One security group, 0patch, has laid out plans to issue their own micropatches after Microsoft ends its support.
- 0patch is ramping up its processes now to start deploying patches after official support ends in January.
Windows 7 and Windows Server 2008 will reach end-of-life status in January of 2020, meaning Microsoft will stop shipping security fixes unless organizations pay for extended support. One group, however, is looking to keep both secure by issuing their own "micropatches" for both Windows 7 and Windows Server 2008 after Microsoft's official support ends.
As detailed in a recent blog post, 0patch, a group backed by security research firm ACROS Security, has laid out a plan to develop and deploy patches for high-risk vulnerabilities in Windows 7 and Windows Server 2008 after January, 2020.
The patches will be developed based on the security advisories Microsoft posts with each Patch Tuesday for Windows 10. 0patch says that its team will determine which high-risk vulnerabilities are present in Windows 7 or Windows Server 2008 and then develop proof-of-concept (POC) tests for triggering vulnerabilities. From there, 0patch plans to develop and deploy fixes on their own. From 0patch:
Once we have a POC and know how the vulnerability was fixed by the people who know the vulnerable code best (i.e., Microsoft developers), we'll port their fix, functionally speaking, as a series of micropatches to the vulnerable code in Windows 7 and Windows Server 2008, and test them against the POC. After additional side-effect testing we'll publish the micropatches and have them delivered to users' online machines within 60 minutes.
The plan sounds ambitious, but the firm is hoping it can be used as a stop-gap for large organizations who may not be ready to update to Windows 10 and want to keep their Windows 7 and Windows Server 2008 machines secure. The group is currently working on its own central management service that allows administrators to set up groups of computers and use different policies for them.
Earlier this year, Microsoft began warning Windows 7 users about the OS's impending end-of-life date on January 14, 2020. Those still running Windows 7 on personal PCs are encouraged to move to Windows 8.1 or Windows 10, but enterprises can opt to pay for extended security support.
Update 6: Microsoft wants all of TikTok, but Trump's order may interfere
The Financial Times reports that as part of negotiations, Microsoft is now inquiring whether it can buy all of TikTok, instead of just the business in the US., Canada, Australia, and New Zealand. This new plan would include India and Europe (and excluding China).
Surface Duo and double Dans take over this week's Android Central podcast
Need even more Surface Duo in your life? Check out the latest Android Central podcast, in which Daniel Rubino and Daniel Bader (double the Dans!) discuss Surface Duo, Microsoft's Samsung love affair, and Project xCloud.
This is the best Windows 10 tablet you can buy right now
There are many Windows 10 tablets on the market, but it's hard to sort through the rubbish. Here's our picks for the best Windows 10 tablets you can buy right now. At the top of our list is the Surface Pro X, which we think is the best due to its ARM processor, large display, and thin form factor while still packing good battery life and excellent performance.
Should your next computer be a mini PC? These are your best options.
Windows PCs come in all shapes and sizes, and whatever your needs there's a computer out there to suit you. Here are the best to choose from if you're looking for a new mini PC.