TL;DR: Windows 10 reached end of support on October 14, 2025, meaning Microsoft no longer releases security patches for the operating system. As of February 2026, roughly 22% of Windows desktops worldwide still run Windows 10, leaving millions of business endpoints exposed to unpatched vulnerabilities. North Carolina businesses that have not yet migrated face growing security risks, compliance failures, and escalating costs, with Extended Security Updates priced at $61 per device in Year 1 and doubling every year after.
Key takeaway: Every month a North Carolina business delays upgrading from Windows 10, the list of unpatched vulnerabilities grows. Attackers are already exploiting Windows 10 flaws like CVE-2025-29824, a zero-day used to deploy ransomware. The time to act is now.
Is your business still running Windows 10? Preferred Data Corporation helps North Carolina manufacturers, construction firms, and SMBs plan and execute Windows 11 migrations with zero downtime. Serving the Piedmont Triad and beyond since 1987. Call (336) 886-3282 or schedule a migration assessment.
What Happened with Windows 10 End of Life and Why Does It Matter?
Microsoft officially ended support for Windows 10 on October 14, 2025. This means the operating system no longer receives security patches, bug fixes, or technical support from Microsoft. For businesses across North Carolina, from High Point manufacturers to Charlotte construction firms, this is not just a technical footnote. It is a fundamental shift in their security posture.
According to StatCounter data from February 2026, Windows 11 now holds 72.8% of the desktop market, while Windows 10 has dropped to 22.1%. That still represents a significant number of machines. Industry estimates suggest roughly 400 million PCs worldwide cannot meet Windows 11 hardware requirements, leaving those devices in a difficult position.
For the 11,496 manufacturing firms in North Carolina and thousands more small businesses across the state, the question is not whether to upgrade but how quickly they can complete the transition. North Carolina was named the top state for business by CNBC in 2025 and ranked third best state to start a business in 2026. Maintaining that competitive edge requires keeping infrastructure current and secure.
What Are the Security Risks of Running Windows 10 After End of Life?
Running an unsupported operating system is one of the highest-risk decisions a business can make. Once Microsoft stopped issuing patches in October 2025, every newly discovered vulnerability in Windows 10 became permanently exploitable on unpatched systems. The exposure compounds monthly.
Here is what NC businesses face right now:
- Unpatched zero-day exploits: Microsoft confirmed that CVE-2025-29824, a vulnerability in the Common Log File System driver, was actively exploited by threat group Storm-2460 to deploy ransomware before the EOL date. Post-EOL vulnerabilities receive no patches at all.
- Ransomware targeting: Manufacturing is the most targeted sector for ransomware, accounting for 68% of industrial ransomware incidents in recent quarters. Unpatched Windows 10 machines are the easiest entry point.
- Lateral movement risk: Attackers compromise outdated endpoints first and then pivot to more secure systems on the same network. A single unpatched Windows 10 workstation on a Greensboro factory floor can compromise an entire network.
- Third-party software decay: Antivirus vendors and hardware manufacturers are already pulling back Windows 10 support. Nvidia announced it will only release Game Ready GPU drivers for Windows 10 through October 2026, after which it moves to security-only maintenance mode.
Key takeaway: A 2025 analysis found that 43% of small businesses experienced at least one cyberattack in the past 12 months. Running an unsupported OS dramatically increases that risk for every Raleigh, Charlotte, and Piedmont Triad business still on Windows 10.
Protect your endpoints now. Preferred Data Corporation provides comprehensive cybersecurity services tailored for North Carolina manufacturers and industrial companies. Call (336) 886-3282.
How Does Windows 10 EOL Affect Compliance and Cyber Insurance?
For North Carolina defense contractors pursuing CMMC certification, manufacturers handling sensitive data, and any business carrying cyber insurance, running an unsupported operating system creates immediate compliance failures. The impact spans multiple regulatory frameworks.
CMMC and Defense Contractor Requirements
CMMC 2.0 requires organizations to maintain current, patched systems as part of basic cyber hygiene. Running Windows 10 without ESU after October 2025 means your systems do not receive security updates, which directly violates multiple NIST 800-171 controls. For NC defense contractors in the Piedmont Triad and Research Triangle regions, this can disqualify you from Department of Defense contract eligibility.
Cyber Insurance Implications
Most cyber insurance carriers now include clauses that deny claims if breaches involve unsupported systems. If a data breach occurs on an unpatched Windows 10 machine when an upgrade or ESU was available, insurers can classify it as negligence. For a Charlotte or Greensboro business, this means paying for cyber insurance that will not actually protect you when you need it most.
Industry Compliance Standards
- PCI DSS: Businesses processing credit cards can fail audits if Windows 10 PCs lack current security updates
- HIPAA: Healthcare-adjacent manufacturers must maintain systems with current security patches
- ISO 27001: Requires documented patch management including end-of-life OS remediation
- SOC 2: Auditors will flag unsupported operating systems as control deficiencies
PDC helps NC businesses navigate compliance requirements alongside OS migrations. Learn more about our CMMC and cybersecurity compliance services.
How Much Does It Cost to Keep Windows 10 vs. Upgrading to Windows 11?
The cost comparison makes a clear case for upgrading. Microsoft's Extended Security Updates program provides a temporary lifeline, but the pricing structure is designed to push organizations toward migration, not away from it.
| Factor | Windows 10 ESU (Paid Updates) | Windows 11 Upgrade | Doing Nothing |
|---|---|---|---|
| Year 1 Cost per Device | $61 | $0 (free upgrade for compatible PCs) or $200-$400 (new hardware) | $0 upfront |
| Year 2 Cost per Device | $122 (cumulative) | $0 | $0 upfront |
| Year 3 Cost per Device | $244 (cumulative) | $0 | $0 upfront |
| 3-Year Total per Device | $427 | $0 to $400 | $0 to catastrophic |
| Security Patches | Critical and important only | Full monthly updates | None |
| Feature Updates | None | Yes | None |
| Compliance Status | Conditional pass | Full compliance | Fail |
| Cyber Insurance | Conditional coverage | Full coverage | Likely denied |
| Software Compatibility | Declining | Full | Declining |
| Hidden Risk Cost | Moderate (partial coverage) | Low | Extremely high (breach avg. $254,445) |
Source: Microsoft ESU pricing and IT GOAT ESU analysis
Key pricing details for businesses:
- Year 1 ESU (2025-2026): $61 per device; $45 per device for Intune or Autopatch-managed devices
- Year 2 ESU (2026-2027): $122 per device, doubling from Year 1
- Year 3 ESU (2027-2028): $244 per device, doubling again
- ESU is cumulative: If you start in Year 2, you must also pay for Year 1, totaling $183 per device
- Consumer ESU: $30 per device, one-time, covers only through October 2026
For a Piedmont Triad manufacturer with 50 workstations, the ESU cost alone reaches $3,050 in Year 1, $6,100 in Year 2, and $12,200 in Year 3, totaling $21,350 over three years. That same budget could fund new hardware for the majority of those workstations while gaining full Windows 11 features and long-term security.
Key takeaway: ESU is a bridge, not a destination. At $427 per device over three years, the cost of delaying migration far exceeds the cost of upgrading. Every dollar spent on ESU is a dollar not invested in modern, secure infrastructure.
What Are the Windows 11 Hardware Requirements for Business PCs?
Before planning a migration, North Carolina businesses need to assess which existing PCs can run Windows 11 and which need replacement. Windows 11 has stricter hardware requirements than its predecessor, and this is where many organizations get stuck.
Minimum Hardware Requirements
- Processor: 1 GHz or faster with 2 or more cores on a compatible 64-bit processor (Intel 8th Gen or newer, AMD Ryzen 2000 or newer)
- RAM: 4 GB minimum (8 GB or more recommended for business use)
- Storage: 64 GB minimum
- TPM: Trusted Platform Module version 2.0 required
- UEFI Secure Boot: Required
- Display: High definition (720p), 9 inches or larger
What This Means for NC Businesses
The TPM 2.0 and processor generation requirements are the biggest hurdles. PCs manufactured before 2018 generally lack these components. For High Point furniture manufacturers, Greensboro logistics companies, and Raleigh technology firms alike, this means:
- Audit your fleet first: Run Microsoft's PC Health Check tool or a managed IT provider's discovery scan across all endpoints
- Budget for hardware replacement: Plan to replace 30-50% of PCs older than 5-6 years
- Prioritize by risk: Upgrade internet-facing workstations and those handling sensitive data first
- Repurpose older hardware: Consider Linux-based thin clients or ChromeOS Flex for basic tasks on incompatible machines
PDC's managed IT services include hardware lifecycle management and procurement support for businesses across North Carolina.
How Should NC Businesses Plan a Windows 11 Migration?
A successful Windows 11 migration requires structured planning, not a rushed weekend project. For North Carolina manufacturers running production systems 24/7 and construction firms managing projects across multiple job sites, downtime during migration is not acceptable.
Step 1: Inventory and Assessment (Weeks 1-2)
- Catalog every Windows 10 device across all locations (offices, plant floors, job sites)
- Run compatibility assessments for Windows 11 readiness
- Identify application dependencies, especially legacy manufacturing software, ERP systems, and specialized tools
- Document current security configurations and group policies
Step 2: Pilot Deployment (Weeks 3-4)
- Deploy Windows 11 on 5-10 non-critical workstations
- Test all business applications for compatibility
- Validate printer, scanner, and peripheral functionality
- Verify network and VPN configurations
Step 3: Phased Rollout (Weeks 5-12)
- Migrate departments in waves, starting with lowest-risk groups
- Schedule upgrades during off-hours or maintenance windows
- Maintain rollback capability for the first 10 days post-upgrade
- Update group policies and security configurations for Windows 11
Step 4: Hardware Replacement (Parallel Track)
- Order replacement PCs for incompatible hardware
- Stage new machines with standard images before deployment
- Transfer user data and profiles with migration tools
- Securely wipe and dispose of retired equipment
Step 5: Validation and Hardening (Ongoing)
- Confirm all endpoints are reporting to patch management systems
- Verify BitLocker encryption is active on all Windows 11 devices
- Update cybersecurity policies to reflect the new environment
- Remove any remaining Windows 10 ESU subscriptions once migration is complete
Key takeaway: A well-planned migration for a 50-100 endpoint business typically takes 8-12 weeks. Rushing it creates more risk than a structured approach. Start now, and your NC business can be fully migrated before the ESU Year 2 price increase hits.
Why Do Manufacturers and Construction Companies Need to Act Now?
North Carolina's manufacturing and construction sectors face unique urgency. These industries operate in environments where downtime directly impacts revenue, and where specialized systems create migration complexity that takes longer to resolve.
Manufacturing-Specific Concerns
- OT/IT convergence: Factory floor systems running Windows 10 may connect to SCADA, PLCs, and industrial control systems. Upgrading requires careful network segmentation planning.
- Legacy software dependencies: Many manufacturers in the Piedmont Triad run specialized CAD, CAM, or ERP software that needs compatibility testing before upgrading.
- 24/7 operations: Production cannot stop for IT upgrades. Migration must be planned around maintenance windows and shift schedules.
- Defense contracts: NC manufacturers serving the Department of Defense must meet CMMC requirements, which mandate current, patched operating systems.
North Carolina is home to over 11,496 manufacturing firms according to Bureau of Labor Statistics data, and the state saw more than $24 billion in capital investment from new and expanding companies in 2025. Protecting that investment requires keeping infrastructure secure and current.
Construction-Specific Concerns
- Mobile and remote endpoints: Laptops and tablets at job sites across Charlotte, Raleigh, Durham, and Winston-Salem need secure, managed upgrades.
- Project management software: Construction-specific tools like Procore, PlanGrid, and Bluebeam need Windows 11 compatibility verification.
- Compliance with general contractors: Many GCs now require subcontractors to demonstrate basic cybersecurity hygiene, including running supported operating systems.
PDC specializes in managed IT for manufacturers and construction companies across North Carolina. We understand the operational constraints these industries face and plan migrations that minimize disruption.
Ready to start your Windows 11 migration? Preferred Data Corporation has helped NC businesses manage technology transitions for over 37 years. From our High Point headquarters, we serve clients on-site within 200 miles, covering Greensboro, Winston-Salem, Charlotte, Raleigh, Durham, and the entire Piedmont Triad. Call (336) 886-3282 or contact us online for a free migration assessment.
Frequently Asked Questions
Is Windows 10 still safe to use in 2026?
No. Windows 10 has not received security patches since October 14, 2025, unless you are enrolled in Microsoft's paid Extended Security Updates program. Without ESU, any vulnerabilities discovered after October 2025 remain permanently unpatched on your systems. Attackers actively target unpatched Windows 10 machines, making continued use a significant security risk for any North Carolina business.
How much do Windows 10 Extended Security Updates cost for businesses?
Microsoft charges businesses $61 per device for Year 1 (2025-2026), $122 per device for Year 2 (2026-2027), and $244 per device for Year 3 (2027-2028). The pricing is cumulative, so starting in Year 2 requires paying for both years ($183 per device). Organizations using Microsoft Intune or Autopatch receive a discount, paying $45 per device in Year 1. Consumer pricing is a one-time $30 fee covering through October 2026. Source: Microsoft Learn ESU documentation.
Can I upgrade to Windows 11 for free?
Yes, if your existing PC meets Windows 11 hardware requirements (Intel 8th Gen or newer processor, TPM 2.0, 4 GB RAM, 64 GB storage). The upgrade itself is free through Windows Update or the Windows 11 Installation Assistant. However, PCs manufactured before 2018 typically lack the required TPM 2.0 chip or compatible processor, requiring hardware replacement.
What happens to my cyber insurance if I keep running Windows 10?
Most cyber insurance carriers include clauses that can deny claims if a breach involves unsupported or unpatched systems. Running Windows 10 without ESU after October 2025 may be classified as negligence by your insurer. Before your next policy renewal, confirm with your carrier whether unsupported operating systems affect your coverage terms. Many Piedmont Triad businesses have discovered this gap too late.
How long does a Windows 11 migration take for a small business?
For a typical NC small business with 25-100 endpoints, a well-planned migration takes 8-12 weeks from initial assessment through final validation. This includes hardware compatibility scanning (1-2 weeks), pilot testing (1-2 weeks), phased rollout (4-6 weeks), and hardware replacement for incompatible PCs (parallel track). Working with a managed IT provider like PDC can accelerate the timeline and reduce disruption to daily operations.
Will my manufacturing or industry software work on Windows 11?
Most modern business and manufacturing software is compatible with Windows 11, including current versions of major ERP systems, CAD/CAM tools, and Microsoft 365. However, older legacy applications, especially custom-built shop floor software or outdated versions of industry tools, may need testing or updates. PDC recommends running a compatibility assessment as the first step of any migration project to identify potential issues before they cause production disruptions.
Related Resources
- Managed IT Services for NC Businesses - Comprehensive technology management including OS migrations, patching, and lifecycle planning
- Cybersecurity Services and CMMC Compliance - Protect your business from the growing threats targeting unsupported systems
- Cybersecurity Essentials for Small Businesses in North Carolina - The foundational security stack every NC business needs
- IT Support Cost Guide for Small Businesses - Understand the true cost of managed IT vs. break-fix models
- Contact Preferred Data Corporation - Schedule your free Windows 11 migration assessment today