A study conducted by Spiceworks found over two-thirds of organizations are running unsupported versions of Microsoft Office software, exposing them to potential cyber-attacks.

1,100 IT pros in the US, Canada, and the UK were polled and an overwhelming 68% admitted to still running some instances of Office 2007, even though support ended for this version in October 2016. Even worse? 46% admitted to running Office 2003; 21% Office 200; 15% Office XP (2002 Version); and even 3% claim to still be running Office 97.

It was concluded that mid-sized firms (100-1,000 employees) were more likely to run Office 2007, while larger organizations usually have more funds to keep up to date with the latest software.

According to the National Cyber Security Centre, outdated software creates two major issues from a security perspective:

1. The software will no longer receive security updates from developers, increasing the likelihood that exploitable vulnerabilities will become known to attacks

2. The latest security mitigations are not present in older software, increasing the impact of vulnerability, making exploitation more likely to succeed, and making detection of any exploit more difficult

It’s hard to believe after the recent WannaCry and NotPetya ransomware attacks that these many organizations continue to run outdated software knowing the risks they face. The WannaCry ransomware attack infected over 230,000 victims in more than 150 countries, as the ransomware was designed to ‘worm’ around networks, infecting all vulnerable systems on the network.  

As mentioned earlier, the problem with running outdated software is not just the lack of new features or improved functionality, it’s the known and exploitable vulnerabilities found within them. This problem can be even worse if found operating in a corporate IT environment, then you are posing a risk to the entire network.


Read this article in InfoSecurity Magazine






NNT Suite of Products

change tracker gen7r2 logo

Combine industry leading Device Hardening, File Integrity Monitoring, Change Control, Configuration Management & Compliance Management into one easy to use solution that can scale to the most demanding environments!

fastcloud logo

Automatically evaluate and verify the authenticity of file changes in real-time with NNT FAST™ (File Approved-Safe Technology) Integrity Assurance.

log tracker logo logo

Comprehensive and easy to use security information & event log management with intelligent & self-learning correlation technology to highlight potentially harmful activity in seconds.

vulnerability tracker logo

Continuously scan and identify vulnerabilities with unparalleled accuracy and efficiency, protecting your IT assets on premises, in the cloud and mobile endpoints.

USA Offices
New Net Technologies LLC
Suite #10115, 9128 Strada Place
Naples, Florida, 34108
1175 Peachtree St NE
Atlanta, Georgia, 30361.
4145 SW Watson, Suite 350
Beaverton, Oregon, 97005.

Tel: (844) 898-8358
email [email protected]
UK Office
New Net Technologies Ltd
Rivers Lodge, West Common
Harpenden, Hertfordshire

Tel: 01582 287310
email [email protected]
CIS benchmarking SEWP Cybersecurity 500Sans Institute Now Certified IBM Security
Copyright 2019, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.