Millions of computers across the UK and globally are still running Windows 10, even as the deadline for free security updates from Microsoft approaches. Industry analysis indicates that approximately one in six machines worldwide continue to operate on the older operating system. This widespread retention of Windows 10 presents a growing cybersecurity challenge, particularly for British businesses and public sector organisations that may not have migrated to newer versions.
Microsoft is scheduled to cease providing free security support for Windows 10 in October 2025. After this date, users who wish to continue receiving critical security patches will need to subscribe to an Extended Security Update (ESU) programme. This programme, which offers up to three years of paid support, will incur increasing costs annually. For many UK small and medium-sized enterprises (SMEs), the prospect of these additional expenses, combined with the technical undertaking of upgrading, is a significant hurdle.
The continued reliance on an outdated operating system makes users more vulnerable to cyberattacks, including ransomware, malware, and phishing attempts. Cybercriminals frequently target known vulnerabilities in unsupported software, as patches are no longer issued to fix these flaws. This risk is amplified for British organisations handling sensitive data, where a breach could lead to severe financial penalties under data protection regulations like GDPR, as well as reputational damage.
For individual users in the UK, especially those with older hardware, upgrading to Windows 11 might not be straightforward due to stricter system requirements. This could force many to either purchase new devices or face the decision of paying for ESU, leaving their systems exposed, or attempting to use a non-supported operating system, further increasing their vulnerability to online threats.
The UK Government has consistently highlighted the importance of robust cybersecurity practices for both businesses and individuals. Organisations are advised to ensure their software is up-to-date and patched regularly to mitigate risks. The looming Windows 10 deadline serves as a critical reminder for British entities to assess their IT infrastructure and plan for necessary upgrades or subscription to extended support to maintain essential security.