I agree 100%. We have all known the time was up for the last few years, but...caught between a rock and a hard place.
The upgrade isn’t free. Sure, Microsoft your institution may have a site license that allows you to upgrade without paying for Windows 7 or Windows 8, but...that is a drop in the bucket.
It is all the associated vendor costs. New applications the vendors sell to customers that allow them to make the transition almost always involve completely upgrading the server and client hardware, not to mention the other costs.
And many of the applications are closely integrated. Even if you get one vendor that has upgraded their product, there is often another closely integrated application whose vendor who is not going to upgrade their product, and you then have the choice of jettisoning the vendor/product and buying a new one, but...the costs are often astronomical for that, and the total price of doing all upgrades and maintaining functionality balloons wildly.
It is a real problem in medicine.
It's a real problem in a lot of industries.
If I were a hacker I would hold off on exploiting any recently discovered vulnerabilities. Why tip my hand and release a virus or trojan that MS will patch against, when I can just stockpile them for a couple months?