Windows 10 reaches end of support (EOS) on October 14, 2025. After that, no free security updates or bug fixes—unless you opt into Extended Security Updates (ESU).
More deep dives: Pentest Testing Corp Blog.
What actually stops—and what doesn’t
- Free Windows updates & support stop (the OS still runs).
- ESU can extend security patches for up to 3 years (paid; now open to orgs and individuals).
- Microsoft 365 Apps on Windows 10: support ends the same day; apps may still run, and security updates for M365 on Win10 continue through Oct 2028.
- Microsoft Edge/WebView2 will keep getting updates on Windows 10 through at least Oct 2028 (no ESU required).
- Microsoft Defender AV: security intelligence updates through at least Oct 2028 (good, but not a substitute for OS patches).
Quick audit: 5-minute PowerShell checks
1) Confirm OS & build
Get-ItemProperty 'HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion' |
Select-Object ProductName, DisplayVersion, CurrentBuild, ReleaseId
Use this to spot Windows 10 devices and stale builds.
2) Last installed patch
Get-HotFix | Sort-Object InstalledOn -Descending | Select-Object -First 1
Verifies if patching is current. After EOS, no new fixes unless ESU is enabled.
3) Defender health snapshot
Get-MpComputerStatus | Select AMEngineVersion, AntivirusSignatureAge, NISSignatureLastUpdated
Defender will keep getting signatures, but that’s not the same as OS hardening.
4) Office/Microsoft 365 footprint
Get-ItemProperty 'HKLM:\SOFTWARE\Microsoft\Office\ClickToRun\Configuration' -ErrorAction SilentlyContinue |
Select ProductReleaseIDs, Platform, AudienceData
If present, plan to move users to Win11 for supported M365.
5) (Domain) Inventory Windows 10 endpoints
# Requires RSAT/ActiveDirectory module
Get-ADComputer -Filter 'OperatingSystem -like "*Windows 10*"' -Properties OperatingSystem, LastLogonDate |
Select Name, OperatingSystem, LastLogonDate |
Export-Csv .\win10-inventory.csv -NoTypeInformation
You’ll get a quick CSV for migration/ESU targeting.
Screenshot — Free Website Vulnerability Scanner
Screenshot of the free tools webpage where you can access security assessment tools.
What to do this month
- Triage endpoints: upgrade to Windows 11 where hardware allows; place blockers on new Win10 imaging.
- Bridge with ESU for devices you can’t replace this quarter.
- Harden & monitor: endpoint protection, macro controls, local admin lockdown, drive encryption.
- Run the free check to surface internet-facing risks fast: free.pentesttesting.com.
Sample Assessment Report from our tool to check Website Vulnerability
Sample vulnerability assessment report generated with our free tool, providing insights into possible vulnerabilities.
Services that make the transition painless
- Managed IT Services — patch orchestration, asset inventory, refresh planning: https://www.pentesttesting.com/managed-it-services/
- AI Application Cybersecurity — secure your AI apps and data pipelines: https://www.pentesttesting.com/ai-application-cybersecurity/
- Offer Cybersecurity to Your Clients — white-label with our team behind you: https://www.pentesttesting.com/offer-cybersecurity-service-to-your-client/
Subscribe on LinkedIn: https://www.linkedin.com/build-relation/newsletter-follow?entityUrn=7327563980778995713
Need a Windows 10 → 11 migration or endpoint audit? Book a consult via our **Managed IT Services: https://www.pentesttesting.com/managed-it-services/**
Top comments (0)