It was heralded as a game changer when it was released  nearly six years ago, but now it’s being let out to pasture without a path back to the barn. It’s Windows XP Service Pack 2 and last week, Microsoft released the last security patches it’s ever going to release for that version of its operating system.

What made XP SP2 different from other maintenance releases from Microsoft was it added new features to the operating system and wasn’t just an amalgam of all the fixes and patches that came before it. What’s more, many of those new features beefed up the security of the OS in a way that profoundly influenced the modus operandi of the Black Hat community.

Among the security features added to XP by SP2 were a local firewall that was on by default, a security-status dashboard and nascent moves at using Data Execution Prevention (DEP) to block attacks. DEP works like this: as Windows monitors programs running under its hood, if it sees an application engaging in malicious activity, it will shut it down.

Measures like those are why SP2 is given credit for forcing cyber bandits away from operating system and network-targeted attacks and toward desktop applications like Microsoft Office and Adobe Reader.

In its day, the SP2 firewall feature was a particular favorite of network administrators. It gave them the power to manage local firewalls. Prior to SP2, local firewalls had to be obtained from third-party vendors, and they were difficult to manage. That discouraged installation of the firewalls on local machines, which left them sitting ducks for malware once it breached an organization’s perimeter defenses.

Now that SP2 won’t be patched again no matter how severe the vulnerability uncovered, no matter what part of Windows may be involved, it is wise for SP2 shops to move to SP3, which Microsoft has pledged to support until at least April 2014. Should organizations start moving to SP3, it would be a major migration. It’s estimated that some 77 percent of organizations are still operating under XP and of those still using XP, 10 percent or more are using SP2.

It should be noted that Microsoft’s cutting its umbilical to SP2 affects more than just a machine’s operating system, but other components of the service pack as well, such as Windows Media Player and Outlook Express.

Continue reading So long XP SP2, it was good to know you