Windows 10 users beware: 70% at risk of cyber attacks as end-of-support looms

US government is warning users to patch or stop using Windows if there's a risk by August 26
An undated image of a person using a laptop. — Unsplash
An undated image of a person using a laptop. — Unsplash 

Microsoft’s end-of-support date is coming closer for the Windows 10 on October 14, 2025, the operating system is now under a critical security threat. With 70 percent of Windows users still running their systems on Windows 10, it has created an extremely dangerous situation regarding cyber-attacks. This vulnerability has major implications for persons and organizations reliant on Windows 10.

What's happening?

A 2018 Windows vulnerability is added to the US government's known exploited vulnerabilities (KEV) catalogue, warning of potential privilege escalation attacks and remote code execution. 

Researchers indicate that the vulnerability, CVE-2018-0824, has been exploited by a Chinese hacking group called APT41. This threat actor has the backing of the Ministry of State Security and is of high priority in terms of seriousness since targeting both government and private organizations falls under its remit.

Read more: Windows 11 all set to announce new Energy Saver mode

The US government is warning users to patch or stop using Windows if there's a risk by August 26. If this is not done, the users would remain susceptible to attacks. This vulnerability would not affect Windows 11. 

Additionally, it would not affect updated Windows systems, thus stressing the need for updates in the case of users.

The warnings, in themselves, seem not to be enough as many users are still lingering in the use of Windows 10, while a mere 30% have so far updated their devices to Windows 11. 

Additionally, with the end-of-support date fast approaching, it is most likely that hundreds of scam emails would target the inboxes of Windows 10 users. Cybercriminals would take advantage of this situation and will compromise the safety of users' data and systems, which would result in data breach and other dire consequences in the form of system compromise and financial losses.