Customers can bulletproof Windows 7 almost completely through a simple move that doesnít require an expensive security suite or setting up complex firewall rules. In fact, all that users need is available by default with the latest iteration of Windows 7. According to a report from BeyondTrust, the vast majority of security vulnerabilities are rendered useless provided that Windows 7 is run only through accounts with limited user privileges. In this regard, itís perhaps worth mentioning that all Windows 7 accounts are restricted to standard user privileges, a move Microsoft made to increase the security of the operating system by decreasing the platformís attack area.

ď90% of Critical Windows 7 operating system vulnerabilities are mitigated by having users log in as standard users. Since the October 2009 release of Windows 7 there have been 10 Critical Windows 7 operating system vulnerabilities published. Companies would be better protected against exploitation of 9 of the Critical Windows 7 vulnerabilities by configuring users without administrator rights,Ē an excerpt from the 2009 Microsoft Vulnerability Analysis report reads.

Also



ďOf all Windows 7 vulnerabilities ever published, 57% are mitigated by removing administrator rights. There have been a total of 23 Windows 7 vulnerabilities published to date. The first vulnerability was published in October 2009, the month Windows 7 was publically released,Ē BeyondTrust adds in its report.

Source