Windows security is as effective as a screen door on a submarine.
It'd take the malware makers about an hour to find any of the what, probably 80 holes that would let them go around such windows security. A back-and-forth battle like that could easily go on for months if not years. In Unix, security and permissions are the foundation, on top of which everything is built. In Windows, security is a hack that was added on later with no due consideration during the initial design phase of windows. It's no wonder it's next to impossible to get it to work the way you want it to.
When you are designing security, the sad truth of it is, the user is the enemy. There's no nicer way to look at it. So it takes a great deal of care to design a security system that can withstand the assult of a user while at the same time being functional and serving the user. It's too late for Windows to make those design considerations. They have errored on the side of functionality and sacrificed the security of the system. There is no fixing that.
The Architects’ Role
11 hours ago