the small to surviving windows xp end of lifepages.shopkeep.com/rs/shopkeeppos/images/the...

7

Upload: others

Post on 27-Jul-2020

4 views

Category:

Documents


0 download

TRANSCRIPT

Page 1: The Small to Surviving Windows XP End of Lifepages.shopkeep.com/rs/shopkeeppos/images/The Small... · credit cards and mobile payments, prints and emails receipts, and prints orders
Page 2: The Small to Surviving Windows XP End of Lifepages.shopkeep.com/rs/shopkeeppos/images/The Small... · credit cards and mobile payments, prints and emails receipts, and prints orders

The SmallBusiness Guide to SurvivingWindows XPEnd of LifeBrought to you by ShopKeep, with ControlScan

What is Windows XP and how is it relevant to retail?

Windows XP is a computer operating system used by millions of PCs throughout the United States. These PCs are used by many brick and mortar retailers as point of sale (POS) terminals, store servers or general office computers.

Windows environments are frequently targeted by hackers and are prone to viruses because they are notoriously easy to breach. Historically, Microsoft has managed this by regularly releasing security ‘patches’ to address any risks.

The Small Business Guide to Surviving Windows XP End of Life 2

Page 3: The Small to Surviving Windows XP End of Lifepages.shopkeep.com/rs/shopkeeppos/images/The Small... · credit cards and mobile payments, prints and emails receipts, and prints orders

What happens after April 8th, and how does it impact me?

After April 8, 2014, support and updates for Windows XP will no longer be available. That means that Microsoft will no longer issue patches to fix newly discovered vulnerabilities, leaving machines still running XP at risk of attack. This can result in the theft of consumer credit card details and ultimately fraud that a small business could be liable for. Any PC running XP that also processes, transmits or stores payment card information — or is connected to a machine that does — is at risk.

Also, after April 8th, merchants running their POS system on Windows XP will be out of compliance with the Payment Card Industry Data Security Standard (PCI DSS), which means it is not considered secure to swipe credit cards on those machines. If you’re running XP, it’s time to upgrade or replace your system.

What’s the risk of doing nothing?

If your payment environment is not PCI compliant, it’s not sufficiently secure. Every time you swipe a card, you are putting another customer’s payment information at risk. Customer credit card details are often stolen for online fraud or used to create counterfeit credit cards that are used in stores.

But the biggest risk is losing your customers’ trust. Once you’ve been hacked and had customer data stolen, it can be very difficult to win that trust back. According to a Harris Poll of 2,000 consumers in January 2014, 60% blame merchants -- not banks -- for customer data theft.

Most small businesses are aware of XP’s end of life, but many do not understand the risks.According to a survey of small businesses by ControlScan, 73% are using Windows XP in some form (laptops, server, POS, etc). Of those:

92% are aware of XP end of life

BUT 57% are not concerned or are unsure about the related security risks

32% are convinced their use of Windows XP doesn’t impact their organization’s PCI compliance

Of those that won’t have XP removed before April 8, budget and resource constraints top the list as the greatest barriers.*

The Small Business Guide to Surviving Windows XP End of Life 3

Page 4: The Small to Surviving Windows XP End of Lifepages.shopkeep.com/rs/shopkeeppos/images/The Small... · credit cards and mobile payments, prints and emails receipts, and prints orders

Think about registers, POS terminals, computers, servers, laptops, etc. Make a list. If you’re not sure whether you’re running XP, you can do a simple test. Go to ‘Start’ in your task bar, click ‘Run’ and then type ‘Winver’ in your search box. Hit ‘Enter’ and your machine will tell you which Windows version you are running. Alternatively, you can visit www.controlscan.com/products-free-ivs-discovery-scan.php to sign up for a free scan of your entire internal IT network.

Three Simple Steps to Survive XP End of Life

Review our three options to decide how best to secureyour store.

If yes, stop!

1 Identify XP in your IT environment. 2Are you swiping credit cards through any of these machines, or storing customer information?

3 Decide on the best course of action.

If you are swiping credit cards on an XP machine, you will need to change something.

Page 5: The Small to Surviving Windows XP End of Lifepages.shopkeep.com/rs/shopkeeppos/images/The Small... · credit cards and mobile payments, prints and emails receipts, and prints orders

Option 2Delay the move and continue touse your Windows XP system

For some people, upgrading or changing systems right away may not be possible. Continuing to use your XP system for the long term is not a good idea, but here are some things you can do to increase security while you consider your options:

Stop swiping credit cards through your XP machine and go old school. Get a standalone payment terminal not connected to your PC. This will cost a few hundred dollars and will mean your card processing is no longer integrated with your POS. You will need to manually enter amounts, which can create errors, and manually reconcile every transaction. Protect your payment environment with a strong, managed firewall and run regular internal and external scans of your network. Ensure your payment environment is isolated from other parts of your network (like connections to the Internet for email). Do not allow access to the Internet for web browsing on your POS machine.

Option 1Upgrade to Windows 7 or 8

Contact your current POS provider to find out how much this will cost. You will need to purchase new software and new hardware for all your registers, which can cost many thousands of dollars. Ask about installation, as there will probably be a wait and a fee for someone to come out and set it up. Ask about maintenance, and be aware that you will need to update this setup again in the future.

Three Options to Secure Your Store

An example of a standalone payment terminal.

The Small Business Guide to Surviving Windows XP End of Life 5

Page 6: The Small to Surviving Windows XP End of Lifepages.shopkeep.com/rs/shopkeeppos/images/The Small... · credit cards and mobile payments, prints and emails receipts, and prints orders

Option 3Move to a cloud-based POS system

A cloud-based system means you no longer need a server, a PC or a technician. It’s a much simpler arrangement with an Apple iPad register you can set up yourself. Upgrading your hardware to a cloud-based system is often the most cost-effective route, and even more so if you already own an iPad. Search online for an iPad POS system that suits your business needs. Most cloud-based POS providers charge a monthly subscription feefor their software. Make sure you go with one that won’t lock you into a contract — you will get better service because they will earn your business every month. Ask about how much support you will get and whether there areany fees. Find out if you can continue to use your current payment provider or choose another you like. Make sure you will be given an encrypted credit card swiper, which means customer card details stay out of your store and in a secure payment gateway. This will secure your store for the future.

Still confused? Call one of our friendly POS Specialists at 800-820-9814, or visit our website for more info:

shopkeep.com/shopkeep-vs-pc-pos

A ShopKeep iPad register with encrypted credit card swiper.

Page 7: The Small to Surviving Windows XP End of Lifepages.shopkeep.com/rs/shopkeeppos/images/The Small... · credit cards and mobile payments, prints and emails receipts, and prints orders

About ShopKeep

The simplest way to make smarter business decisions, NYC-based ShopKeep is an a ordable, complete platform for running a shop or restaurant from an iPad with real-time reporting on the web or from your smartphone. Backed by award-winning customer care, the ShopKeep iPad app rings sales, processes credit cards and mobile payments, prints and emails receipts, and prints orders remotely to the kitchen. Founded by a fellow business owner, every aspect of ShopKeep is designed to enable merchants of all kinds, from co ee shops to boutiques and much more to be successful. It is used by thousands of merchants around the world every day.

About ControlScan

ControlScan helps small and mid-sized businesses (SMBs) eliminate hassle and overcome complexity in securing credit card data and other sensitive customer information. Our depth of commitment to the SMB fuels our role as a payment security thought leader and valued partner. Flexible, cost-effective options include PCI/HIPAA compliance programs, ASV/QSA services,cloud security solutions and more. For more information, please visitwww.ControlScan.com or call 1-800-825-3301.

*The referenced ControlScan survey was completed between February 14 and March 18, 2014, by 299 small businesses representing a variety of industries including retail/consumer goods, healthcare, restaurant/hospitality, personal services (dry cleaners, hair salons, etc.) and more.

shopkeep.com | 800-820-9814

The Small Business Guide to Surviving Windows XP End of Life 7