Zombie PCs: What Windows 10 End of Support Means for Audits
They turn on. They run your line-of-business software. They print to the copier. They look fine.
But Microsoft stopped patching Windows 10 on October 14, 2025. Every Patch Tuesday since then has shipped fixes for Windows 11 and nothing for Windows 10. The update channel is closed.
These machines are Zombies. They look alive. Underneath, they are dead.
Unsupported endpoints are one of the most common findings in an infrastructure stabilization engagement.
Every Regulated Vertical Has the Same Finding
HIPAA, PCI DSS, SOC 2, FERPA, CJIS, NERC, and most cyber insurance policies require supported software with documented patching. Windows 10 breaks that evidence trail for all of them.
If you have an incident in 2026 and the forensic report shows Windows 10 endpoints with no vendor fixes available, insurance and regulators will ask one question: why were they still in production?
The Fix: Know the Count
You don't need a full audit. You need to know how many Zombies you have and where they are.
The Zombie PC Audit
- Scan. I scan your network for OS versions.
- Identify. I verify if ESU (Extended Security Updates) are active or missing.
- Report. You get a simple Red/Green list.
Cost: $495 flat fee. (Waived if you hire me to manage the migration.)
Evidence Checklist
- OS version inventory with device owners
- ESU entitlement status per Windows 10 endpoint
- Last patch date and update cadence
The audit or the incident will find them. Better if you find them first. Request a Zombie PC Audit
Next step
Most engagements start with the Health Check. Fixed fee, clear picture, under two weeks.