Andy Ful
From Hard_Configurator Tools
Thread author
Verified
Honorary Member
Top Poster
Developer
Well-known
- Dec 23, 2014
- 8,337
The Corona Virus case has shown that people who are interested in health matters (for example doctors) are more vulnerable than average people. So maybe, the people interested in computer security (MT readers) can be more vulnerable as compared to average computer users.
Let's assume that average computer users are those who use Windows 10 and native security (Windows Defender + Edge Chromium) with the preference of apps from Microsoft Store. Of course, some apps have to be installed by more experienced users.
From my experience, there can be several different definitions of average users, but let's agree for the above simplistic definition in this thread. I will use quotes to distinguish "average users" from other possible meanings of average users.
About 90% of attacks are made nowadays via emails (phishing URLs and malicious attachments). So, what is the difference when one uses the email client? Many MT readers use 3rd party email clients that allow opening executable attachments. This can put them in danger. The average user will use the Windows native email client which block opening such attachments by default.
Many attacks are made via active content in MS Office documents. Many MT readers probably use MS Office or another office suite. Although the 3rd party (non-Microsoft) office suites are much safer as compared to MS Office, they often do not block some active content (like OLE attachments). This can put users in danger. The average user can use Office Online which blocks active content in documents by default.
The attackers often use archives to propagate malicious files. Many MT readers use 3rd party archiver applications (like 7-Zip) that do not transfer the MOTW from archive to its content. After downloading from the Internet and unpacking, the malicious file is ignored by SmartScreen. This can put users in danger. The average user will use the native Windows Zip archiver, which properly transfers the MOTW, so the unpacked malicious executables will be blocked by SmartScreen.
The attackers often try to exploit popular desktop applications. Most of MT readers use such applications, so some of them can be infected in this way. The average user will use more apps from Microsoft Store which generally are much safer. Furthermore, the apps from Microsoft Store update automatically when it is needed - that cannot be said about many desktop applications.
Many MT readers install/uninstall several security solutions. This usually has an impact on system stability (due to system leftovers or overkill setup). The average users do not do such things, so they can be safer against broken Windows Updates and system crashes.
MT readers can spend many hours a day while browsing and trying new applications. So, they can be in danger more often than average users.
In the case of above-average computer users, the danger comes from demanding more usability and more convenient features. The average computer users are much less demanding and can accept simple applications. More usability often decreases security.
In the end, most readers can learn on the MT forum, so they can neutralize the increased attack surface area by knowledge, safer habits or additional software. But still, I am not sure if they are much safer than average users.
Let's assume that average computer users are those who use Windows 10 and native security (Windows Defender + Edge Chromium) with the preference of apps from Microsoft Store. Of course, some apps have to be installed by more experienced users.
From my experience, there can be several different definitions of average users, but let's agree for the above simplistic definition in this thread. I will use quotes to distinguish "average users" from other possible meanings of average users.
About 90% of attacks are made nowadays via emails (phishing URLs and malicious attachments). So, what is the difference when one uses the email client? Many MT readers use 3rd party email clients that allow opening executable attachments. This can put them in danger. The average user will use the Windows native email client which block opening such attachments by default.
Many attacks are made via active content in MS Office documents. Many MT readers probably use MS Office or another office suite. Although the 3rd party (non-Microsoft) office suites are much safer as compared to MS Office, they often do not block some active content (like OLE attachments). This can put users in danger. The average user can use Office Online which blocks active content in documents by default.
The attackers often use archives to propagate malicious files. Many MT readers use 3rd party archiver applications (like 7-Zip) that do not transfer the MOTW from archive to its content. After downloading from the Internet and unpacking, the malicious file is ignored by SmartScreen. This can put users in danger. The average user will use the native Windows Zip archiver, which properly transfers the MOTW, so the unpacked malicious executables will be blocked by SmartScreen.
The attackers often try to exploit popular desktop applications. Most of MT readers use such applications, so some of them can be infected in this way. The average user will use more apps from Microsoft Store which generally are much safer. Furthermore, the apps from Microsoft Store update automatically when it is needed - that cannot be said about many desktop applications.
Many MT readers install/uninstall several security solutions. This usually has an impact on system stability (due to system leftovers or overkill setup). The average users do not do such things, so they can be safer against broken Windows Updates and system crashes.
MT readers can spend many hours a day while browsing and trying new applications. So, they can be in danger more often than average users.
In the case of above-average computer users, the danger comes from demanding more usability and more convenient features. The average computer users are much less demanding and can accept simple applications. More usability often decreases security.
In the end, most readers can learn on the MT forum, so they can neutralize the increased attack surface area by knowledge, safer habits or additional software. But still, I am not sure if they are much safer than average users.
Last edited: