Windows 10 End of Support 2025: ESU Options and Upgrading to Windows 11

Which?’s new survey finds an estimated 21 million people in the UK still using Windows 10 — and with Microsoft scheduled to end Windows 10 security updates on 14 October 2025, that cohort faces a genuine increase in cyber‑risk unless they act.

Background​

Microsoft has formally confirmed that Windows 10 will reach end of support on 14 October 2025, meaning routine feature updates, bug fixes and security patches will cease for that OS after that date. Microsoft also published details of a one‑year Consumer Extended Security Updates (ESU) option that will deliver critical and important security updates through 13 October 2026 for enrolled, eligible machines.
Which? — the UK consumer group — ran a nationally representative survey and used its findings to estimate the scale of the problem domestically: about 21 million UK owners of laptops or desktops still on Windows 10, of whom 26% say they plan to keep using Windows 10 after updates stop (about 5.4 million people, by Which?’s estimate). Which? warns this behaviour leaves users exposed to unpatched vulnerabilities and scams. These are survey‑based estimates and should be read as such; Which? outlines its methodology in the original release.

---

Why this matters: the security and practical stakes​

Security patches exist to close newly discovered vulnerabilities. When an operating system loses vendor support, newly found exploits will no longer be patched and attackers will quickly focus on unpatched versions, because they offer high success and low cost.

• Microsoft explicitly states that after 14 October 2025 Windows 10 “will no longer receive software and security updates” and that continuing to run it increases exposure to viruses and malware.
• The UK’s National Cyber Security Centre (NCSC) and other security bodies have urged organisations and home users to migrate to supported systems or mitigate exposure — calls echoed by industry commentators and reporting across the press.

Beyond immediate threat vectors, unsupported systems can cause knock‑on problems: payment and banking apps may refuse to run, antivirus vendors can eventually stop supporting legacy platforms, and organizations reliant on vulnerable machines risk compliance and regulatory consequences.

---

What Which? found — the numbers and the caveats​

Which? surveyed more than 2,000 UK adults and produced headline estimates:

• Approximately 21 million UK residents own and use a PC or laptop running Windows 10.
• 26% of those users said they intend to continue using Windows 10 after Microsoft stops updates — Which? translates that percentage into roughly 5.4 million people.
• Other responses included intentions to upgrade the device’s OS (39%), replace the computer (14%), or switch to an alternative OS such as Linux (6%); 11% were unsure.

Caveats: these are extrapolations from a sample survey. The 21 million figure is an estimate based on survey responses and national extrapolation; absolute counts would require device telemetry or sales/usage data from broader measurement bodies. Treat the figures as indicators of scale rather than precise census values.

---

Microsoft’s official options: upgrade, ESU, or replacement​

Microsoft has laid out three pragmatic routes for consumer Windows 10 machines:

• Upgrade to Windows 11 if the device meets minimum system requirements (free for eligible Windows 10 PCs). Microsoft provides tools and settings routes to check and upgrade.
• Enroll in Consumer ESU for a single year of security updates through 13 October 2026. Enrollment options include using a Microsoft account with backup/sync turned on (no extra fee), redeeming 1,000 Microsoft Rewards points, or a one‑time purchase of $30 (or local currency equivalent) per eligible device. ESU does not include feature updates or full technical support.
• Buy a new PC with Windows 11 preinstalled, or migrate to an alternative OS (Linux distributions, ChromeOS/ChromeOS Flex) if the user prefers. Microsoft and retailers are promoting trade‑in and recycling programs to ease device replacement.

Important detail: Microsoft’s ESU consumer option is intended as a short‑term bridge, not a permanent fix. For businesses and education customers ESU pricing and durations can differ (enterprises historically can buy up to three years of ESU with volume licensing and escalating per‑device fees).

---

Why many users can’t simply upgrade to Windows 11​

Windows 11’s security baseline is stricter than Windows 10’s. Minimum system requirements include modern CPU models on an approved list, UEFI firmware with Secure Boot, and TPM 2.0. Microsoft has stressed that the TPM 2.0 requirement is non‑negotiable, and unsupported older hardware will often be unable to run Windows 11 without BIOS, firmware or hardware upgrades.
Consequences:

• A significant proportion of older PCs simply cannot be upgraded to Windows 11; research groups and market watchers have estimated that a sizeable chunk of installed hardware lacks compatibility. That reality underpins many environmental and affordability concerns about the EOL move.
• For some users, upgrading the motherboard or CPU to meet requirements can cost more than buying a new device. For others, enabling TPM or Secure Boot in firmware may be a simple BIOS change — but that depends entirely on the model and age of the PC.

---

Environmental and economic impact: the e‑waste problem​

Research firms and commentators have warned that the Windows 10 transition could have serious environmental consequences. Canalys, for example, estimated that roughly a fifth of devices could become difficult to refurbish or re‑sell due to Windows 11 incompatibility — about 240 million PCs worldwide — amplifying e‑waste concerns and the need for sustainable disposal and circular economy measures. These are industry estimates and hinge on many assumptions about resale demand, refurbishment capacity and regulatory context.
Policy and advocacy groups have used that evidence to press Microsoft and governments for smoother, fairer transition pathways: free or low‑cost extended support, incentives for repairs, refurbishment programs, and explicit measures to prevent a spike in disposal of still‑usable hardware.

---

Practical checklist — what every Windows 10 user in the UK (and beyond) should do now​

• Check your PC’s Windows 11 compatibility — use Microsoft’s System Requirements page or the built‑in compatibility tools; confirm TPM, Secure Boot and CPU eligibility. If the PC meets the requirements, plan an upgrade.
• Back up everything — full file backups (cloud and offline), browser data, and exported lists of installed applications and licences. Microsoft recommends OneDrive and built‑in backup tools for transition scenarios.
• Evaluate ESU as a stopgap — if you can’t upgrade or replace immediately, consider enrolling in consumer ESU (free in some circumstances such as opting into Windows Backup or via 1,000 Rewards points; otherwise a $30 option exists). Keep in mind ESU covers only critical/important patches and lasts one year for consumers.
• Keep software and firmware updated now — update browsers, antivirus, drivers and firmware while Windows 10 still receives routine patches; this reduces the attack surface going into EOL.
• Harden online accounts — enable multi‑factor authentication (MFA) on email, banking and cloud services; switch to a password manager where possible. These steps pay dividends if device security becomes weaker.
• Consider alternative OS paths — for older hardware that can’t run Windows 11, evaluate lightweight Linux distributions (Ubuntu, Linux Mint) or ChromeOS Flex as a way to regain up‑to‑date, supported software without buying a new PC. Research application compatibility and backup/restore flows first.
• Plan safe disposal or refurbishment — if you must replace a device, use certified recycling and trade‑in programs; many OEMs and retailers offer data‑sanitisation and recycling services. Canalys and others emphasise reuse and refurbishment to limit environmental harm.
• For businesses and heavy users — inventory all Windows 10 machines, prioritise migration for systems holding regulated data, and budget for Windows 11 upgrades, replacements, or enterprise ESU licensing as needed. Enterprise ESU pricing and options differ from consumer ESU.

---

Cost and consumer impact — how much will staying on Windows 10 cost you?​

• Consumer ESU: Microsoft’s consumer ESU is a one‑time, one‑year option (enrollment choices include free route via Windows Backup and Microsoft account sync, or redeeming 1,000 Rewards points), otherwise a one‑time purchase of $30 per device is available. This covers critical/important patches through 13 October 2026. ESU is explicitly not a substitute for migration planning.
• Enterprise ESU: Volume licensing for businesses has historically been tiered — first‑year per‑device fees that may double in later years — and is structured differently from the consumer product. Organisations should consult Microsoft volume licensing for exact figures.
• Upgrade vs replacement: Upgrading hardware (motherboard/CPU) to meet Windows 11 requirements can approach the cost of a new PC in many cases. For many consumers, buying a new Windows 11‑capable laptop or desktop is the more economical long‑term choice when factoring performance and warranty.

---

Risks of inaction — what users who “just keep using” Windows 10 face​

• Rising exploit risk: Once an OS is out of support, attackers concentrate on unpatched flaws. Even well‑configured antivirus and firewalls cannot fully substitute for vendor patches that close fundamental OS vulnerabilities.
• Third‑party app support erosion: Over time, application vendors and security tools reduce testing and support for legacy OSes, which can lead to app compatibility problems and reduced protection.
• Regulatory and compliance exposure: Businesses using unsupported systems to process regulated data may face compliance issues or insurance complications.
• False economy: Paying for ESU or expensive repairs to older hardware may be a temporary fix that defers but does not eliminate longer‑term replacement costs. ESU is a bridge, not a destination.

Where claims or figures vary between vendors, research firms and consumer surveys, those differences are often down to sampling methods or interpretation. For example, the “21 million” UK figure comes from Which?’s survey extrapolation; global device counts or Canalys’ 240 million e‑waste figure are independent industry estimates with their own assumptions. Treat headline numbers as directional and complement them with a device‑level audit at home or work.

---

Enterprise perspective — timelines, migration and mitigations​

Organisations are under particular pressure because large‑scale OS migrations require planning:

• Inventory: identify all Windows 10 devices, software compatibility and business‑critical applications.
• Prioritise: classify systems by sensitivity and operational importance; migrate or replace high‑risk assets first.
• Mitigate: apply network segmentation, application whitelisting, EDR (endpoint detection and response) tools and enhanced monitoring to reduce attack surface for devices that must stay on Windows 10 temporarily.
• Budget for ESU or replacements: enterprise ESU is available but typically costly in successive years; it should be used only where migration timelines require breathing room.

Public sector and critical infrastructure organisations should coordinate with national cyber‑security bodies for guidance and potential funding or procurement windows; the NCSC and similar agencies have issued explicit advisories urging action.

---

The competitive and market effects: who benefits and who loses?​

• PC makers and retailers stand to gain from increased refresh cycles as users buy Windows 11‑capable devices; OEM trade‑in programs may soften the blow.
• Cloud and alternative OS vendors (ChromeOS, Linux vendors) are launching messaging aimed at holdouts, promoting lightweight, automatically updated platforms as alternatives. Google’s Chromebook marketing and ChromeOS Flex are explicitly targeting Windows 10 holdouts.
• Repair and refurbishment channels argue that strict Windows 11 requirements limit the market for second‑hand machines, creating waste and harming repair businesses — a point advocacy groups have used in campaigns calling for more flexible or equitable support options.

---

Final assessment and recommendations​

Which?’s warning — that tens of millions of people in the UK remain on Windows 10 with a substantial minority intending to keep using it — is a clear consumer‑risk signal. Microsoft’s official timeline (end of support: 14 October 2025) and the consumer ESU bridge through 13 October 2026 are confirmed company positions. Users and organisations should treat ESU as a short, paid stipend of time to migrate safely rather than a long‑term solution.
Action priorities:

• Audit every PC for Windows 11 eligibility and critical data exposure.
• Back up and prepare for either upgrade, OS replacement or secure device retirement.
• Use ESU only as a bridge if immediate migration is impossible, and be prepared to move off Windows 10 before ESU ends.

Finally, the transition raises legitimate questions about sustainability, consumer fairness and the social cost of enforced hardware turnover. Policymakers, consumer groups and vendors will be judged on whether the next 12–24 months produce responsible outcomes: affordable support options, meaningful repair/refurbishment incentives, and clear guidance that protects consumers who cannot afford or technically manage rapid hardware refresh. Until those structures are fully in place, the safest technical posture for most users is to plan, back up, and migrate to a supported environment as soon as practicable.

---

Source: Telecompaper Telecompaper