Windows 10 Security Updates: A Quick Reference Guide

Windows 10 Security Updates: A Quick Reference Guide

When should vulnerabilities be described as “critical”?

Microsoft categorizes them this way when exploitation could enable code execution without any user action.

This will be remembered as Windows 10 approaches its end of life. It will be October 13, 2025. A phase of broad security updates (ESU, Extended Security Updates) will then commence.

These updates will cover critical vulnerabilities, as well as those labeled “important.” In other words, vulnerabilities that, broadly speaking, could compromise user data or processing resources.

How to access ESU for Windows 10?

ESU will be available for devices running Windows 10 22H2 with at least the November 2024 cumulative update KB5466123.

Read also: Microsoft Teams and Google Meet establish direct connection

On Enterprise editions and Pro licenses used in a commercial context, ESU is accessible through volume licensing programs. Enrollment via CSP partners will be possible starting September 1, 2025.

For the first time, Microsoft opens the program to personal PCs. An enrollment assistant will be available via notifications and in Settings. Currently tested in the Windows Insider program, it will roll out starting in July (general availability announced for mid-August).

How long will the ESU last?

For enterprises, ESU is expected to last three years (through October 10, 2028).

For individuals, they will be limited to one year (through October 13, 2026).

Activation keys cannot be used before the start of the ESU period (first update planned for November 11, 2025).

How much does it cost?

ESU are purchased on a yearly basis, per device.

In business, the price for the first year is the same as with Windows 7: $61 per machine. It will double in year 2 ($122), then again in year 3 ($244).

Read also: Generative AI and the workplace: promises and paradoxes

A 25% discount is offered to those using a cloud solution—such as Intune or Autopatch, for example—to manage Windows updates.

In education, Microsoft applies a specific rate: $1 per device in the first year, $2 in the second, and $4 in the third.

On personal PCs, two options will be offered:

  • Use Windows Backup to sync settings to the cloud
  • Pay $30
  • Pay with Microsoft Rewards points (1,000 points)

Anyone joining the program later will need to pay for the prior years (ESU are cumulative).

ESU do not include technical support, except in cases where they would cause regressions.

Free with Windows 365 and Azure VMs

ESU are free and automatically activated for Windows 365 VMs and for those associated with services such as:

  • Azure Dedicated Host
  • Azure VMware Solution
  • Nutanix Cloud Clusters on Azure
  • Azure Local
  • Azure Stack Hub
  • Azure Stack Edge

They also apply to Windows 10 devices that access Windows 11 Cloud PCs via Windows 365 or Azure Virtual Desktop.

Read also: Digital sovereignty: public servants favor efficiency over independence

A dedicated handling for Defender antivirus and Microsoft 365 apps

With or without ESU, Defender antivirus will receive updates through October 2028.

The same deadline applies to Microsoft 365 apps, which will receive feature updates until the 2608 release:

  • In August 2026 on the Current channel
  • October 13, 2026 on the Monthly Enterprise channel
  • January 12, 2027 on the Semi-Annual Enterprise channel
Dawn Liphardt

Dawn Liphardt

I'm Dawn Liphardt, the founder and lead writer of this publication. With a background in philosophy and a deep interest in the social impact of technology, I started this platform to explore how innovation shapes — and sometimes disrupts — the world we live in. My work focuses on critical, human-centered storytelling at the frontier of artificial intelligence and emerging tech.

© 2025 Dawn Liphardt