Let’s keep everyone Admin when deploying Win10: not ! - Sami Laiho
The Windows security laws (and documentation) says there is NO security in Windows unless you have disk encryption and don't have admin rights in daily use. Sadly even Microsoft doesn't sometimes remember this - especially with new features and concepts of Microsoft Azure and Windows 10.
Last year 94% of all malware attacks against Windows would have been mitigated by removing admin rights. For IE/Edge that percentage was 100%. Making the most important change in security is easiest when upgrading an OS instead of trying to do it while running a certain OS. You might remember that Windows 10 (according to Microsoft) is the last Windows ever? This means that this might be your best/last chance to get this right...easily!
Speaker: Sami Laiho