Hackers are going to go after large companies. Large companies tend to have very old servers and that sometimes are rarely patched.
For example, on a recent trip to Nebraska Furniture Mart in Kansas I noticed most of their workstations are still running XP Pro. These workstations are connected to a corporate network and most of them are not monitored well by the roaming employees. All it takes is a flash drive and a batch file to pivot to another machine and eventually compromise the network/any other machines. The attacker will look like an employee and he/she may be fired or worse. If I were an attacker, I would go more towards the company rather than individual users.
Microsoft not releasing any additional patches is not necessarily going to make a computer suddenly less secure. I'm more worried about 3rd party products
. I'm looking at you Oracle. As for Windows, I will say that given the depth of code Microsoft did a great job of making it secure. The 3rd party drivers and programs make the operating system less secure and the same thing goes for any operating system, even Linux.