Windows 10 users are running out of time to protect themselves against new security vulnerabilities. With the first Patch Tuesday following Windows 10’s end of support approaching next week, users who continue to run the operating system should enroll in the Extended Security Updates (ESU) program to stay safe.
The ESU program allows users to receive security updates for a limited time and is available for free or at a low cost. For consumers, this means paying $30, backing up settings to their Microsoft account, or redeeming 1,000 Microsoft reward points. Enterprise customers can use the program for three years, with a total cost of $427 per device.
However, it’s essential to note that security updates are not just about keeping Windows 10 safe; they also help prevent exploitation of vulnerabilities that could lead to malware installation. In recent updates, Microsoft patched a vulnerability tracked as CVE-2025-24990, which was actively exploited in attacks to gain administrative privileges on devices.
To enroll in the ESU program, users must be running Windows 10 version 22H2 Home, Professional, Pro Education, or Workstations edition. They should also make sure all available updates are installed via Windows Update. Users can then follow a step-by-step process to enroll in the program through Settings > Update & Security.
For enterprise customers, enrolling devices in the ESU program requires purchasing licenses through Microsoft Volume Licensing or Cloud Solution Provider partners. Each device must be activated with a unique ESU key and managed using tools like Intune, WSUS, or Configuration Manager.
Microsoft also recently announced that Windows 10 devices accessing Windows 365 Enterprise Cloud PCs and Windows 365 Frontline Cloud PCs can receive free enrollment into the ESU program.
Source: https://www.bleepingcomputer.com/news/microsoft/still-on-windows-10-enroll-in-free-extended-security-updates