Microsoft has issued a warning about a critical security vulnerability that could affect up to 400 million Windows PCs. The alert comes as a deadline approaches, after which security updates will cease for Windows 10 users who are not enrolled in Microsoft’s extended support program.
The scale of the issue
Market data shows that Windows 10 still runs on 41% of all personal computers. Of the approximately 600 million PCs using the operating system, up to 400 million are unable to upgrade to Windows 11 due to its strict hardware requirements. Without continued software support, these systems will be exposed to significant cybersecurity risks.
This situation differs from previous operating system transitions. When support for Windows 8 ended in 2016, only 3.7% of users were still on the platform. Similarly, only 2.2% of users were still on Windows 8.1 when its support concluded in 2023. The large number of users on non-upgradable Windows 10 hardware presents a much larger potential security problem.
Security risks of unpatched systems
Cybersecurity experts emphasize that without ongoing security patches, previously manageable vulnerabilities can become major entry points for malicious actors. After the October 14 deadline, ransomware gangs could potentially exploit millions of unpatched computer systems.
Compounding the issue, data from StatCounter reveals an unexpected trend: approximately 140 million PCs continue to run Windows 7, an operating system that was retired in 2020. This highlights the widespread use of outdated and unsupported systems.
Options for Windows 10 users
Users have two primary options to maintain their system’s security before the deadline, which is now less than 10 days away.
- Enroll in the Extended Security Update (ESU) program: Microsoft is offering a free ESU program that provides continued security updates. To enroll, users must have a Microsoft and a OneDrive account.
- Upgrade to Windows 11: For computers that meet the hardware requirements, upgrading to Windows 11 is the most direct solution. This deadline may accelerate the adoption of the newer operating system.
For computers that cannot be upgraded, organizations like the Public Interest Research Group (PIRG) note that secondary markets offer alternative solutions, such as installing operating systems like Linux or Chrome OS.