Blog
← Back to Blog
January 15, 2020 general

Windows 7 Is Dead. If You're Still Running It, Here's What Happens Next.

End of life operating system

Yesterday, January 14, 2020, Microsoft ended support for Windows 7. No more security patches. No more bug fixes. No more updates. We've been warning about this since July 2018. If you're still running Windows 7, the clock isn't ticking anymore. It's stopped.

What This Means Right Now

Every security vulnerability discovered in Windows from this point forward will remain permanently exploitable on Windows 7. Attackers know this. They've been waiting for this date. Expect targeted attacks against Windows 7 systems to increase rapidly.

Remember WannaCry? It devastated organizations running Windows XP, an OS that had been end-of-life for three years. The same pattern will repeat with Windows 7, and Windows 7 has a much larger installed base than XP did.

If You're Still on Windows 7

Option 1: Upgrade Now (Best)

Most Windows 7 machines can run Windows 10. The in-place upgrade process takes 1-3 hours per machine. Your IT provider can do this with minimal disruption, often after hours. This is the fastest path to security.

Option 2: Replace Hardware (Also Good)

If your machines are too old for Windows 10 (generally pre-2012), replace them. New workstations with Windows 10 Pro start around $600. Budget for it. The cost of a new computer is a fraction of the cost of a ransomware attack.

Option 3: Extended Security Updates (Expensive Stopgap)

Microsoft offers Extended Security Updates (ESU) for Windows 7 Pro and Enterprise. Year 1: $50 per device. Year 2: $100. Year 3: $200. It doubles each year and ends after three years. This is a temporary bridge, not a solution.

Option 4: Do Nothing (Terrible)

Running an unpatched operating system in a healthcare environment is a HIPAA compliance risk, a cyber insurance issue, and an invitation to attackers. Your cyber insurance policy may exclude coverage for incidents on unsupported systems. A HIPAA auditor will cite it as a violation. Don't do nothing.

The Timeline

If you start today:

  • Week 1: Inventory Windows 7 machines, verify software compatibility
  • Week 2: Upgrade or replace one machine as a pilot
  • Weeks 3-4: Roll out upgrades to remaining machines
  • Week 5: Verify zero Windows 7 machines remain

Five weeks. That's all it takes. We wrote about this 18 months ago. We wrote about it 6 months ago. We're writing about it now. Please don't make us write about it again after an incident.