Why your users shouldn’t be logged in as an Admin

Department of Haven’t We Said This Before:

Despite all the complaints about UAC and the other methods Microsoft supplies for elevating privilege, it is critical to take advantage of these technologies if your users occasionally require administrative rights.

Not being an admin significantly lowers your risk. There wasn’t really a good excuse for giving everyone admin rights back in the days of Win XP, so there’s certainly no excuse in 2012.

http://nakedsecurity.sophos.com/2012/01/10/first-patch-tuesday-of-2012-covers-7-ms-bulletins-6-adobe-and-tackles-the-beast/?utm_source=Naked+Security+-+Sophos+List&utm_medium=email&utm_campaign=83c11391d8-naked%252Bsecurity