October 12, 2009, 10:52 AM — I can give you lots of reasons to switch to Windows 7 from Vista. It's much faster, more stable, and it's a much smoother ride. That said, I can't give you any real reasons to switch from XP to 7, but I can safely assure XP users that come the day you buy a new PC you won't regret it the way so many people who 'upgraded' to Vista did. But, improving security isn't a reason to move to Windows 7. When it comes to security and Windows 7, it's just more of the same old, same old.
This point really came home to me when I was looking over all the patches that Microsoft will delivering tomorrow in what may be the largest Patch Tuesday ever. Microsoft "will ship a total of 13 updates next week, eight of them pegged "critical," the highest threat ranking in its four-step scoring system, beating the previous record of 12 updates shipped in February 2007 and again in October 2008."Of these 13, five are for Windows 7.
Pretty impressive don't you think for an operating system that's not even officially released yet?
In total, Microsoft will be releasing five patches for Windows 7. Only one of them is rated with Microsoft's most dangerous security rating of Critical. Microsoft's rates the other four Windows 7 security bulletins as "Important."
The Critical problem is actually with Internet Explorer 8. Anyone running IE 8 on any version of Windows will need to apply this patch.
We don't know what the other problems are for now, except that all four of them exist in both the 32 and 64-bit versions of Windows 7.
Windows 7 isn't getting as many fixes as Vista, 8 in total with 4 marked as critical, but then Windows 7 isn't even shipping yet. The hackers and crackers haven't even really started yet to break Windows 7 down. They will.
Microsoft isn't making the over-sized security claims for Windows 7 that it did for Vista. Still, I have friends who tell me that they expect Windows 7 to be safer than earlier Windows operating systems.
I wish. No, Windows 7 is still Windows, and that means it's built on an inherently unsafe foundation of a single user, non-networked system in a world where every computer is potentially connected to all other computers.