Guest blog: 46% of UK Councils using out of date server software

The impact is that affected councils are unduly exposed to cyber threats compared with those using supported software.

A Freedom of Information request, made by COMPAREX UK, showed that 46% of councils across the country are still using one or more of Windows Server 2000, Windows Server 2003 or Microsoft SQL Server 2005. All of which are no longer supported by Microsoft and not receiving security patches.

The resulting security holes – “vulnerabilities” – could potentially be exploited by attackers to gain access to councils’ data.

Best Practice

The cyber threat is always evolving and growing, but the use of such outdated software is an unnecessary risk and councils have had plenty of warning over the risks they face.

This news that so many councils continue to use outdated software highlights the need for an urgent shift in mindset. They need to stop wondering if a cyber incident will impact them and accept that it’s more likely a case of when.

Hacking has become easier than ever thanks to the release of mass-produced exploitation kits that are readily available to anyone with a Tor browser, access to the Dark Web and some bitcoins. But as with most criminals, hackers prefer easy targets. The chances are high that if you have some basic security software installed and have kept your machine up to date with the latest patches, a hacker will pass you by as they seek out easier prey. The same rules apply online as well as offline. Make yourself an easy target, and you will become a victim.

How to stay up to date

We know that council budgets have been under strain the past few years due to cutbacks but that doesn’t really excuse them using such out of date software. Staying up to date and keeping the wealth of sensitive data they hold secure needs to be a priority.

Upgrading to the latest software is just one part of the puzzle when it comes to staying secure, however. Effective patch management also needs to be introduced as well as an incident response plan and staff training.

New automated security services such as XQ Cyber’s CyberScore™ can assist with this.

Share this

FROM SOCIAL MEDIA

An important proposal and something that @techUK is very proud to be a part of. https://t.co/jGct8hswia
Local Digital Fund open for next round of funding for councils looking to improve public services through digital t… https://t.co/peFwsKTTew
Join our newest flagship event #CreatingDigitalFutures on 08 October in Manchester. We'll be exploring how the tech… https://t.co/N9B1hjPjZz
Just a few days left to submit your vote – who do you think should be named @ComputerWeekly most influential woman… https://t.co/HzdcsI2TXR
One month to go until #SmarterStateUK 2019. Join us on 18 September, along with digital leaders from across the pub… https://t.co/VpqmzqeVfK
Join us on 06 November in #Manchester for #Supercharging the Digital Economy 2019. We'll be discussing how digital… https://t.co/kMvV06oX7E
Make sure you get your vote in before the deadline this Friday! #womenintech #CWwit50 https://t.co/1eaIpNRE1I
Become a Member
×

Become a techUK Member

By becoming a techUK member we will help you grow through:

Click here to learn more...