Windows 7 终止支持将于 2020 年1 月 14(January 14)日正式结束,这个非常流行的操作系统将不再获得更新。微软(Microsoft)不会为这个有十年历史的操作系统推出任何安全或功能更新。微软(Microsoft)一直在要求Windows 7用户升级。但是,如果您想继续使用Windows 7,那么这篇文章只适合您。您想留下来的原因可能有很多,这也意味着操作系统现在存在任何安全漏洞。如今,不受保护的旧操作系统的挥之不去的威胁现在变得更加严重,尤其是在勒索软件(Ransomware)的情况下。在这篇文章中,我们将建议您可以采取的保护和(secure Windows 7)支持终止后保护 Windows 7 。
有多少用户仍在使用Windows 7?
Windows 7用户仍占 30% 左右,这是用户的一大块!如果他们继续连接到互联网,他们几乎不可能保持安全。这个数字告诉我们为什么微软(Microsoft)推出Windows 7 扩展安全更新(Extended Security Updates),因为他们不希望企业说没有防备。毕竟,在生命周期结束后继续使用 Windows 7(staying with Windows 7 after End Of Life)是有风险的!
支持终止后保护 Windows 7
虽然我们建议升级到Windows 10,但一些家庭用户或企业可能不想投资购买新许可证,因为这可能会导致硬件升级。对于许多人来说,这也是一个软件升级问题。这并不容易,但总有一天你将不得不升级。以下是Windows 7用户可以采取的一些步骤,以最大程度地降低风险并缓解潜在的安全问题。
- 使用标准用户帐户
- 订阅(Subscribe)扩展安全(Extended Security Updates)更新
- 使用好的 Total Internet Security软件
- 切换到其他网络浏览器
- 使用(Use)替代软件而不是内置软件
- 使您安装的软件保持最新
- 使用(Use)额外的按需(On-demand)防病毒扫描程序
- 通过调整来强化(Harden)Windows 7 的安全性
- 虔诚地定期备份
- 使用强密码
- 当心(Beware)您从Internet和电子邮件下载的内容(Email)
- 启用显示文件扩展名
- 启用 BitLocker
- 在连接USB驱动器之前进行预扫描
- 使用安全 DNS
- 使用 VPN
- 使 Windows 7 脱机。
让我们详细看看这个。
继续安全使用 Windows 7
1]使用标准用户帐户
切勿使用管理员(Admin)帐户。您应该为日常使用创建和使用标准用户帐户。在这种情况下,恶意软件可能无法修改任何系统文件,这样会安全很多。如果您需要更改任何内容,请切换到管理员帐户并进行更改。如果您想继续使用管理员(Admin)帐户,请将UAC栏提高到最大。您可以选择“始终(Always)通知”以获得最大的安全性。
2]订阅安全更新
微软正在为(Microsoft)Windows 7的(Windows 7)企业(Enterprise)用户提供付费订阅。它被称为Windows 7 扩展安全更新,微软(Microsoft)将在未来三年内继续修复安全漏洞。该企业将不得不每年购买该包裹,因为它会变得越来越贵。但是,如果您最终要迁移到Windows 10,并且希望在接下来的三年中进行测试并教育您的员工,那么它是前进的绝佳方式。
- Windows 7 Enterprise:第一年每位用户 25 美元,第二年 50 美元,第三年 100 美元
- Windows 7 Pro:成本是(Windows 7)Windows 7 Enterprise的两倍,即 50 美元、100 美元和 200 美元
该程序对所有用户开放,而不仅仅是企业。
另一个适合Windows 7用户的选项是选择Windows 虚拟桌面。由于您将来必须升级硬件,因此您可以切换到云版本。您必须为每位用户付费,但它还包括免费的 Windows 7扩展安全更新(Extended Security Updates)。
3]使用(Use)一个好的Total Internet Security软件
与Windows XP不同,Microsoft已承诺会不断更新 Microsoft Security Essentials 的病毒签名。它是Microsoft的免费防病毒解决方案。但是,这可能还不够,因此我建议您购买仍然为Windows 7用户提供支持的全面安全解决方案。
防火墙(Firewall)可以阻止您的防病毒软件可能遗漏的威胁。不仅如此,它还可以防止黑客侵入您的计算机!由于微软(Microsoft)将停止更新Windows XP组件,其防火墙也将保持未打补丁的状态。因此,除了防病毒软件之外,您还必须安装一个好的防火墙。虽然您总是可以使用一些免费的防病毒软件(free AntiVirus software) 和免费的防火墙软件(free Firewall software),但我建议您安装免费但完全集成的Internet 安全套件(Internet Security Suite),它可以提供多层保护。卡巴斯基(Kaspersky)、BitDefender、Malwarebytes是一些不错的付费选择。
4]使用(Use)额外的按需(On-demand)防病毒扫描程序
有时可能会有疑问,您可能需要第二意见。在这种情况下,您可以使用这些按需防病毒扫描程序(on-demand antivirus scanners)。事实上,至少每周使用一次是一种习惯。
5]通过调整来强化 Windows 7的安全性(Harden Windows 7)
您还可以使用我们的适用于 Windows 7 的免费软件便携式 UWT来强化安全设置。
XP-AntiSpy是一个小实用程序,可让您禁用某些内置功能并加强 Windows 7 的安全性。
XPY是另一个这样的工具 请检查它们并使用其中一个轻松禁用远程桌面(Remote Desktop)等功能。它们适用于 Windows 7。
6]切换(Switch)到其他网络浏览器
您应该考虑使用Firefox或Chrome等替代浏览(alternative browser)器。这将是艰难的,因为大多数浏览器将停止支持其浏览器对Windows 7的支持。您可以下载浏览器,它可能会工作,但如果有一天更新停止,请不要感到惊讶。
7]使用(Use)替代软件而不是内置软件
由于Microsoft不会为其软件推出更新,因此您最好开始寻找替代方案。我们已经有一个列表:
这是您可以查看的免费 Windows 软件的完整列表。
8]使(Keep)您安装的软件保持最新
软件更新检查器(Software Update Checker)将 扫描您的计算机以查找已安装的软件。因此,您将免受该软件中的漏洞的影响。定期运行他们的扫描,并确保您安装的所有软件都已更新。
9]虔诚地定期备份
如果您已连接到互联网,请准备好被勒索软件或病毒(Virus)锁定(locked out by a Ransomware),它们会接管您的所有数据。您应该备份所有计算机数据,并且您必须每天都这样做。有大量的备份软件可以免费进行备份和恢复。( backup and restore for free.)Windows 7 还提供了一个内置的备份和恢复工具,您可以使用它来安排每天恢复到外部存储。
我还建议您备份(recommend you to backup all the drivers)Windows上安装的所有驱动程序。OEM(OEMs)将很快开始从其网站上删除所有Windows 7驱动程序。(Windows 7)
10]使用强密码
同样,如果您是单个用户,您可以关闭用户帐户的密码,以便节省时间。但是,这可以帮助其他人在您不查看和窃取您的数据时登录。为了保护Windows PC,必须使用强密码(strong passwords )——无论是用户帐户还是登录Internet时。当您打算暂时离开计算机时,不要忘记锁定计算机。Press Windows Key + L锁定您的计算机。
11]当心(Beware)你从互联网(Internet)和电子邮件下载的东西(Email)
这是一个一般性警告,您应该始终注意这一点。不要单击下载附件或单击提示您下载的任何文件而无需担心。
虽然您当然可以下载附件,(download attachments,)但您希望从朋友、亲戚和同事那里得到附件,但要非常小心您甚至可能从您的朋友那里收到的邮件转发。在这种情况下要记住的一条小规则:如果有疑问- 不要(– DONT)!
12]启用显示文件扩展名
我们说过,在Windows XP终止支持期间,我们现在也是如此。保持打开显示文件扩展名(show file extensions )的选项总是一个好主意 。当扩展名可见时,您会很快注意到它是否不是.doc、.pdf、.txt等常规格式。它将帮助您查看文件的真实扩展名,从而使恶意软件伪装自己并进入您的计算机。
13]启用BitLocker
如果您以前从未使用过它,那么现在是时候使用它了。Bitlocker可以加密驱动器分区或整个驱动器,包括启动驱动器。它将生成一个密钥,您需要从中解锁数据。因此,请确保在某处注明。
14]在连接USB驱动器之前进行预扫描(Prescan)
受感染的 USB 可以感染计算机。收紧或限制 USB 驱动器(restrict what USB drives)在连接时可以执行的操作是个好主意。我建议您始终首先使用防病毒软件(antivirus software)对其进行扫描,以确保它没有最新的威胁,然后访问其中的文件。
15]使用安全DNS
使用OpenDNS或CloudFlare来防止您的计算机访问不良的恶意网站是一个绝妙的主意。您可以轻松更改DNS或阻止成人网站。(block adult websites.)这些DNS还将自动阻止可以提供垃圾邮件(SPAM)和病毒(Viruses)的站点。
16]使用VPN
使用良好的VPN在网络上保持隐形。
17]使Windows 7脱机
如果您想保持系统运行并且没有连接到 Internet 的计划,请将其保持离线状态。不要连接到互联网。如果要更新任何内容,请从其他计算机下载并扫描它,然后连接到Windows 7进行安装。
我们希望这些提示可以帮助您在支持结束后保护Windows 7 。如果您还有其他工作,请在此处分享,以造福他人。
How to secure Windows 7 after End of Support
Windows 7 End of Support will officially end оn January 14, 2020, and this very popular operating system will no longer get υpdates. Microsoft will not roll out any security or feature updates for the decade-old operating syѕtem. Microsoft has been asking Windows 7 users to upgrade. But if you want to keep using Windows 7, then this post is just for you. There can be many reasons why you would want to stay, which also means the OЅ iѕ now open any security vulnerability. The lingering threat оn an old unprotected OS is now even more signifіcant today, especially with Ransomware in the picture. In this post, we will suggest the steps you can take to protect and secure Windows 7 after End of Support.
How many users are still using Windows 7?
Windows 7 users still account for around 30%, and that’s a big chunk of users! It is going to be almost impossible for them to stay secure if they keep connecting to the internet. This figure tells us why Microsoft rolled out Windows 7 Extended Security Updates, as they do not want the business to say unguarded. After all, there are risks involved, in staying with Windows 7 after End Of Life!
Secure Windows 7 after End of Support
While we, would recommend upgrading to Windows 10, some home users or businesses may not want to invest in buying a new license, because it could result in a hardware upgrade. For many, its a software upgrade issue as well. It’s not going to be easy, but one day you will have to upgrade. Here are some steps which a Windows 7 user could take to minimize the risks and mitigate their potential security problems.
- Use a Standard User Account
- Subscribe for Extended Security Updates
- Use a good Total Internet Security software
- Switch to an alternative web browser
- Use alternative software instead of built-in software
- Keep your installed software up-to-date
- Use an additional On-demand antivirus scanner
- Harden Windows 7 security by tweaking it
- Take backups regularly religiously
- Use Strong Passwords
- Beware of what you download from the Internet and Email
- Enable Show file-extension
- Enable BitLocker
- Prescan before connecting a USB drive
- Use Secure DNS
- Use a VPN
- Take Windows 7 offline.
Let us take a look at this in detail.
Continue using Windows 7 safely
1] Use a Standard User Account
Never use an Admin account. You should create & use a Standard User Account for your day-to-day use. In this scenario, malware may not be able to modify any system file, it will be a lot safer. If you need to change anything, switch to the admin account and make the changes. If you want to keep using the Admin account, raise the UAC bar to maximum. You can choose to “Always notify” for maximum security.
2] Subscribe for Security Updates
Microsoft is offering paid subscriptions for Enterprise users of Windows 7. Its called Windows 7 Extended Security Updates, where Microsoft will keep fixing security bugs for the next three years. The business will have to buy the package every year as it will keep getting expensive. However, if you are finally moving to Windows 10, and want to spend the next three years testing, and educate your employees, then its an excellent way to move ahead.
- Windows 7 Enterprise: It will cost you $25 per user for first, $50 for second and $100 for the third year
- Windows 7 Pro: The cost is double compared to Windows 7 Enterprise, i.e., $50, $100 and $200
The program is open for all users and not just business.
Another suitable option for Windows 7 users is to opt for Windows Virtual Desktop. Since you will have to upgrade your hardware in the future, you can switch to the cloud version. You will have to pay for per user, but it will also include free Windows 7 Extended Security Updates.
3] Use a good Total Internet Security software
Unlike Windows XP, Microsoft has promised to keep updating Virus signatures for Microsoft Security Essentials. It is a free antivirus solution from Microsoft. However, it may not be enough and so I would recommend you to buy a total security solution that is still offering support for Windows 7 users.
A Firewall can block threats that your antivirus may miss. Not only that, it can prevent hackers from breaking into your computer! Since Microsoft will stop updating Windows XP components, its firewall too, will remain unpatched. So it will be imperative that you install a good firewall too, apart from antivirus software. While you can always go in for some free AntiVirus software and a free Firewall software, I’d recommend that you install a free, but fully integrated Internet Security Suite, which could offer multi-layered protection. Kaspersky, BitDefender, Malwarebytes are some of the good paid options.
4] Use an additional On-demand antivirus scanner
There may be times of doubt, where you might want a second opinion. At such times you may use these on-demand antivirus scanners. In fact, make it a practice to use it once a week at least.
5] Harden Windows 7 security by tweaking it
You may also use our freeware portable UWT for Windows 7 to harden security settings.
XP-AntiSpy is a little utility that lets you disable some built-in features and harden Windows 7 security.
XPY is another such tool Do check them out and use one of them to disable features like Remote Desktop, etc, easily. They work on Windows 7.
6] Switch to an alternative web browser
You should consider using an alternative browser like Firefox or Chrome. It’s going to be tough as most of the browsers will stop support their browser support for Windows 7. You may download the browser, and it might work, but do not be surprised if updates stop coming someday.
7] Use alternative software instead of built-in software
Since Microsoft will not roll out updates for their software, it is a good idea that you start looking for an alternative. We already have a list for:
Here is a complete list of free Windows software that you can take a look at.
8] Keep your installed software up-to-date
A Software Update Checker will scan your computer for installed software. You will thus be protected from vulnerabilities in that software. Run their scans regularly and make sure that all your installed software is updated.
9] Take backups regularly religiously
If you are connected to the internet, be prepared to get locked out by a Ransomware or Virus, which takes over all your data. You should backup all the computer data, and you must do it every day. There are tons of backup software available which can take backup and restore for free. Windows 7 also offers an inbuilt Backup and Restore Tool, using which you can schedule a daily back to external storage.
I would also recommend you to backup all the drivers installed on Windows. OEMs will soon start removing all the Windows 7 drivers from their websites.
10] Use Strong Passwords
Again, if you are a single user, you might turn off the password on your user account so that you can save time. However, this can help others log in when you are not looking and steal your data. For securing Windows PC, strong passwords are a must – be it the user account or when logging on to the Internet. Do not forget to lock the computer when you intend to leave it for a while. Press Windows Key + L to lock your computer.
11] Beware of what you download from the Internet and Email
It is a general warning and something you should always take care about. Do not click on download attachments or click on any file which you are prompted to download without your concern.
While you can surely download attachments, you are expecting from friends, relatives & associates, but be very careful of the mail forwards which you may receive even from your friends. A small rule to remember in such scenarios: If in doubt – DONT!
12] Enable Show file-extension
We said that during Windows XP end of support, and we mean it now as well. It is always a good idea to keep the option to show file extensions turned on. When the extensions are visible, you will quickly notice if it is not a regular format like .doc, .pdf, .txt, etc. It will help you in seeing the real extensions of the files and thus make it a bit more difficult for malware to disguise itself and get on your computer.
13] Enable BitLocker
If you have never used it before, its time to use it now. Bitlocker can encrypt drive partitions or the whole drive, including boot drive. It will generate a key which you will need to unlock data from it. So make sure it is noted somewhere.
14] Prescan before connecting a USB drive
An infected USB can infect the computer. It’s a good idea to tighten up or restrict what USB drives can do when connected. I would recommend you to always first scan it with your antivirus software to make sure that it is clean of the latest threats and then access the files on it.
15] Use Secure DNS
It is an excellent idea to use OpenDNS or CloudFlare to prevent your computer from visiting bad malicious websites. You can easily change DNS or block adult websites. These DNS will also automatically block sites that can serve SPAM and Viruses.
16] Use VPN
Use a good VPN to stay invisible on the net.
17] Take Windows 7 offline
If you want to keep the system running and you have no plans to connect to the internet, keep it offline. Do not connect to the internet. If you want to update anything, download it from some other computer, scan it, and then connect to Windows 7 to install it.
We hope these tips help you to secure Windows 7 after the end of the support. If there is something else you do, please share it here for the benefit of others.