Windows Security - Build another STANDARD ACCOUNT for safety from most malware attacks - Security Protection

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Windows Security - Build another STANDARD ACCOUNT for safety from most malware attacks

Building a second user account with NON-ADMINISTRATIVE access is one of the best ways to protect your home or corporate PC. This is called a limited account in Windows XP. It's also referred to as a standard account in later versions of Windows. This is a great safe technique for browsing, email, or for routine work. Most latest versions of sofware products will run fine in limited mode. You can always can use the ADMINSTRATIVE account mainly to install or update software when needed.

Report: 64% of all Microsoft vulnerabilities for 2009 mitigated by Least Privilege accounts
http://www.zdnet.com/blog/security/report-64-of-all-microsoft-vulnerabilities-for-2009-mitigated-by-least-privilege-accounts/5964

QUOTE: Key summary points on the percentage of flaws mitigated:

• 90% of Critical Windows 7 operating system vulnerabilities are mitigated by having users log in as standard users
• 100% of Microsoft Office vulnerabilities reported in 2009
• 94% of Internet Explorer and 100% of IE 8 vulnerabilities reported in 2009
• 64% of all Microsoft vulnerabilities reported in 2009
• 87% of vulnerabilities categorized as Remote Code Execution vulnerabilities are mitigated by removing administrator rights

90% of Critical Microsoft Windows 7 Vulnerabilities are Mitigated by Eliminating Admin Rights
http://www.beyondtrust.com/downloads/whitepapers/documents/wp039_BeyondTrust_2009_Microsoft_Vulnerability_Analysis.pdf

QUOTE: This BeyondTrust report investigates all vulnerabilities published in Microsoft’s 2009 Security Bulletins, as well as all of the published Windows 7 vulnerabilities to date. It reports on vulnerabilities that are mitigated by configuring users to operate without administrator rights and examines the latest major Microsoft releases, including Windows 7 and Internet Explorer 8. The results show that despite unpredictable and evolving attacks companies can greatly reduce risk, experience greater protection from zero-day threats and reduce the threat from vulnerabilities by removing administrator rights.

WINDOWS - GENERAL RESOURCES TO BUILD A LIMITED ACCOUNT
http://www.bing.com/search?q=windows+limited+account
http://www.microsoft.com/windows/windows-vista/features/user-account-control.aspx
http://www.microsoft.com/windowsxp/using/setup/winxp/accounts.mspx
http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/ua_c_account_types.mspx

WINDOWS 7 - RESOURCES TO BUILD A STANDARD ACCOUNT
http://www.bing.com/search?q=windows+standard+account
http://unixwiz.net/techtips/win7-limited-user.html
http://windows.microsoft.com/en-us/windows7/Why-use-a-standard-user-account-instead-of-an-administrator-account

Posted: May 20 2010, 10:05 AM by Harry Waldron | with no comments |

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.