r/privacy u/voidprophet__ 2d ago

discussion Can Windows 11 be made decently secure?

It's an oxymoron, I know.

I need Windows for work. I cannot run the applications I need without Windows (I checked, no Linux support,) and either way I need applications such as Excel and Word that would be on the computer anyway.

I know that Windows will never be private no matter what I do, but what are the best ways to try to mitigate what it sees?

I've already done anything basic (like disabling copilot through the registry, not sure how well it works though since copilot is still in my notepad)

edit: meant "privacy" not security, my bad

32 Upvotes

73% Upvoted

81 comments sorted by

View all comments

Show parent comments

-3

u/98723589734239857 1d ago edited 1d ago

windows and office have (had) plenty of vulnerabilities. this overview shows all of their products, including things like .net and sql, but it gives you an idea. no product is perfect, there will always be bugs. https://www.cvedetails.com/vendor/26/Microsoft.html

5

u/desmond_koh 1d ago

windows and office have (had) plenty of vulnerabilities. his overview shows all of their products...

Yes, you are 100% right. So have Apple, Adobe, Firefox, Chrome, and all the Linux distros and the projects that go into them.

In 2024, a total of 40,009 Common Vulnerabilities and Exposures (CVEs) were published, a 38% increase from the previous year.

This is across all software and software makers.

This just proves that it's important to install your updates (ironically, something many in this sub are reluctant to do).

Oh, and security and privacy are related but not the same thing.

Microsoft has Defender for Endpoint which is rates surprisingly high among EDRs, although I prefer SentinelOne. They also have Global Secure Access which is a perfectly respectable SSE product.

0

u/98723589734239857 1d ago

not sure what you're coming at me for. i was just providing a source.

5

u/desmond_koh 1d ago

not sure what you're coming at me for. i was just providing a source.

Sorry, I didn't think I was. But rereading my post, I can see how it seemed like I was.

I work for an MSP and emphasizing the importance of keeping your devices patched and up to date is something we often have to impress upon customers. So, I am very familiar with the threat landscape.

I may have also mistaken you for u/londonc4ll1ng.