IT systems Archives

Winsage

November 11, 2025

UK’s £312M Windows 10 Fiasco: Upgrading to Obsolescence on EOL’s Doorstep

The UK’s Department for Environment, Food and Rural Affairs (Defra) has allocated £312 million to upgrade its IT systems to Windows 10, just months before Microsoft ends support for the operating system on October 14, 2025. Defra faces challenges in migrating thousands of devices, with 24,000 outdated machines incompatible with newer systems. A survey indicates that 90% of UK finance firms also struggle with outdated IT infrastructure, increasing cybersecurity risks. The National Cyber Security Centre has warned organizations to prepare for migrations to Windows 11. Defra's £312 million expenditure includes software licenses, consulting fees, and hardware refreshes, but additional risks such as increased downtime and regulatory fines could lead to significant consequences. The department's outdated devices do not meet Windows 11’s TPM 2.0 requirements, complicating the upgrade process. Experts advocate for an upgrade to Windows 11, but extensive compatibility testing and user training are necessary. Government oversight bodies are scrutinizing Defra’s expenditures, and discussions suggest alternatives like Windows 10 IoT Enterprise LTSC, which offers updates until 2032. The financial implications of Microsoft’s Extended Security Updates pricing add strain, as costs double in subsequent years. The urgency for upgrades is emphasized by the potential cybersecurity risks, with experts warning of vulnerabilities affecting national food security and environmental initiatives.

Tech Optimizer

July 14, 2025

The performance engineer: a detective licensed to kill… bottlenecks

A SQL query initially took fifteen hours to process, but after performance engineering adjustments by Vadim Laktushin, it was reduced to two minutes. Performance engineers (PEs) work to enhance IT system efficiency by identifying and resolving performance bottlenecks in application code, database management systems, configurations, and hardware. Vadim transitioned from a developer to a performance specialist at Postgres Professional after exploring benchmarks and system tuning. Performance issues often require complex solutions rather than straightforward fixes. For example, a client migrating from Oracle to PostgreSQL faced delays due to the Write-Ahead Log (WAL), which became a bottleneck during heavy write operations. PEs adhere to principles such as proactive analysis, reliance on data, and caution against quick fixes. Essential skills for PEs include programming, Linux expertise, understanding algorithms, statistical thinking, and effective communication. The future of performance engineering may involve specialization, and while AI can assist, it cannot replace human expertise in optimization tasks.

Tech Optimizer

July 5, 2025

Protecting OT Systems Without Disrupting Production

Manufacturers are increasingly integrating IT systems with operational technology (OT), leading to heightened cyber threats such as ransomware, supply chain breaches, and attacks from nation-state actors. To enhance cyber resilience, it is crucial to segment IT and OT networks to prevent breaches on the IT side from affecting critical OT systems. Effective segmentation involves placing OT systems behind firewalls, restricting protocols, and using unidirectional gateways. Many manufacturing plants struggle with aging and undocumented devices, making security and monitoring challenging. Asset visibility tools can help map connected devices, enabling better inventory management and risk assessment. Attackers often use "living-off-the-land" techniques to navigate networks undetected, necessitating defenses that include behavioral analytics and application whitelisting. Incident response plans tailored for OT environments are essential, as production interruptions can have severe consequences. These plans should include scenarios like ransomware attacks and require regular testing and backups. For legacy systems that cannot be patched, isolation and monitoring are critical, along with virtual patching to block known exploits. Weak credentials pose a significant risk, so implementing role-based access control and multi-factor authentication is necessary. Security monitoring tools like SIEM and XDR should be used to consolidate data from IT and OT environments, providing alerts for potential attacks. Overall, cyber resilience in manufacturing focuses on minimizing risks and ensuring recovery without disrupting operations.

Tech Optimizer

June 13, 2025

Microsoft Data Loss Prevention (DLP): Tips to Protect Your Business Following the Latest Outage

Microsoft attributed a recent global outage affecting various digital infrastructures to a "CrowdStrike update," which disrupted multiple applications including OneDrive, OneNote, Outlook, PowerBI, Microsoft Teams, and others. Users experienced issues such as synchronization failures and access difficulties. The incident highlights vulnerabilities in supply chains that organizations rely on for managing sensitive data, which can be targeted by cyber threats. Data Loss Prevention (DLP) is a feature within Microsoft Purview designed to protect sensitive information from unauthorized disclosure. DLP policies can monitor user activity and take protective actions like alerting users about inappropriate sharing, blocking sharing attempts, or relocating data to secure locations. DLP can be applied across various platforms, including Office 365 applications and Windows endpoints. The DLP lifecycle includes planning and deployment phases, where organizations assess data to be monitored and ensure policies do not disrupt workflows. Monitoring and reporting tools provide insights into policy matches and incidents, helping organizations refine their DLP efforts. However, DLP has limitations, including false positives, user resistance, and challenges in detecting data leakages through new communication channels.

Winsage

May 29, 2025

Machines running Windows 10 — even the latest version of 22H2 — will no longer receive security patches and updates. While Windows 10 will continue to function, it won’t be secure.

October 14, 2025, marks the end of support for Windows 10, meaning devices running this OS will stop receiving security patches and updates. Since the end of 2022, Windows 10 has only received security patches without new features. While it will continue to function, its security will be compromised. Organizations may need to consult IT professionals before relying on unsupported operating systems. It is also advisable to assess older infrastructure that may depend on outdated operating systems. Upgrading to Windows 11, specifically version 24H2, is recommended before the October 2025 deadline, as unsupported operating systems pose significant security risks.

Tech Optimizer

March 25, 2025

APT and ransomware attacks continue to plague Vietnam’s IT systems

In 2024, Vietnam experienced over 155,640 ransomware attacks, leading to financial losses in the tens of trillions of VND (hundreds of millions of USD) for organizations. A cybersecurity assessment on March 25 revealed that 60% of Vietnamese businesses lack adequate cybersecurity solutions. On the first day of a ransomware attack, one company reported losses exceeding 100 billion VND (approximately .1 million), while another faced losses of up to 800 billion VND (about .3 million). Bkav's research indicated that ransomware attacks are becoming more sophisticated, with many organizations lacking sufficient antivirus protection. The National Cybersecurity Association reported over 659,000 cyberattacks in 2024, with APT and ransomware attacks accounting for 26.14% and 14.59% of incidents, respectively. Experts recommend regular vulnerability assessments, 24/7 cybersecurity monitoring, and comprehensive incident response plans.

Winsage

March 7, 2025

NHS cyber security concerns raised about move to Windows 11

Concerns are rising about cybersecurity vulnerabilities in the NHS as it transitions to Windows 11, especially since Microsoft will stop security updates for Windows 10 on October 14, 2025. Many NHS institutions are facing hardware limitations that may hinder this upgrade. The NHS's device configuration has shifted from approximately 70% desktop PCs and 30% laptops to an estimated 80% laptops, many of which are now five years old due to the pandemic-related distribution surge. This aging technology poses significant risks, as the NHS capital budget has not increased to address the need for updates. A spokesperson for NHS England confirmed a five-year deal with Microsoft for security solutions, urging organizations to transition to Windows 11 before the end of Windows 10 support. Additionally, a 2022 British Medical Association report indicated that over 13.5 million hours of doctors' time were lost annually due to inadequate IT systems, with 80% of doctors believing that improved IT infrastructure would help address backlogs.

Winsage

February 3, 2025

The clock is ticking: Why businesses must prepare for Windows 11 now

As of October 2025, Windows 10 will reach its end-of-support, posing risks for Australian businesses that still rely on it, with nearly 47% of the desktop OS market share. The Australian Cyber Security Centre warns that outdated systems will be more vulnerable to cyber-attacks, and businesses will no longer receive security updates, increasing the risk of data breaches, which currently average over AUD 1 million per incident. Compliance with regulations like the Australian Privacy Principles requires the use of secure and up-to-date technology. Windows 11 offers enhanced security features and productivity tools, making it essential for businesses adopting hybrid work models and integrating advanced technologies. HP is actively preparing businesses for this transition by optimizing its products for Windows 11, providing tailored solutions to ease the upgrade process. Additionally, the Australian Government has introduced a Technology Investment Boost for SMEs, allowing them to deduct 20% of costs related to digital adoption, and has committed AUD 1.2 billion to the Digital Economy Strategy to enhance digital infrastructure and skills.

Winsage

December 7, 2024

How to prepare for the Windows 10 shutdown

Windows 10 will reach the end of support on October 14, 2025. It once had over a billion users and still holds over half of the market share. Users face vulnerabilities without security updates post-deadline, and about one in five laptops may not be compatible with Windows 11. Alternatives to Windows 11 include open-source operating systems like Linux and Google's OS Flex. Remanufacturing as a Service (RaaS) offers a sustainable option for extending IT infrastructure lifespan, with remanufactured laptops being up to 70% less expensive and reducing carbon emissions by approximately 316 kg per laptop. Microsoft has announced a one-year security update extension for Windows 10 users at a cost of £23. The end of Windows 10 coincides with International E-waste Day, presenting an opportunity for businesses to adopt more sustainable practices.

Tech Optimizer

November 15, 2024

Warnings as remote working presents a significant cybersecurity concern

A study by Markel Direct surveyed 500 SME owners, revealing that 23% see securing remote workspaces as a primary challenge, ranking second among cyber security issues, while 62% are concerned about the sophistication of cyber threats. To safeguard data accessed by remote employees, 52% use VPNs, 48% train employees on secure practices, and 46% have remote access policies. However, 49% would not know how to respond to a cyber-attack, and 69% lack a cyber security policy. Proactive measures include 72% using antivirus software, 69% regularly updating software, and 52% adopting multi-factor authentication. Despite these efforts, 43% of SMEs do not train employees on best practices, and 53% lack cyber insurance. Rob Rees from Markel Direct highlighted the importance of having a robust cyber security policy and preparedness against AI-driven attacks. Markel Direct offers a cyber response helpline for policyholders.