I always remember WannaCry as a reason to keep Windows updated (no, I wasn’t affected by it), but every new update is full of AI bloat :S
I keep all the communication with the mothership blocked and open just the Wuauserv, Bits and few domains just for updates, and every new update that are new services trying to call home, and this one update sitting here waiting for me to allow internet access I read the content and it is very descriptive about “Copilot+ PCs unique features”, “AI-Powered experience”, “Accessibility and input” (they added AI to a bunch of stuff), “User interface and experience” (more AI and widgets), then they say they added this Windows Hello and Windows Share that I don’t even want to know, and for security all they say is “Critical security fixes are included to help keep your system protected against emerging threats.” but to get this I need to get all their AI crap that might be a bigger security and privacy risk than whatever “Critical security fix” they included :S
Go with Windows 11 ltsc if you won’t move to Linux. That way you’ll get security fixes but no new AI for a while. Doesn’t even come with the Microsoft Store or onedrive, so pretty barebones. It’s already stripped down compared to regular Windows people try to debloat then can run into issues with after new updates bring new “features”.
If you just want security updates and no new AI stuff go to ltsc.
I always removed a bunch of the Windows bloat, but more and more they made them intertwined with core system functionalities so you can’t remove them. This update reinstalled Copilot, but just like Edge, I’m sure soon if you remove it completely you are killing core functionalities - now, without Edge WebView you can’t even connect to the internet.
The only winning move is not to play.
Not to be adversarial but it’s either their way or the linux way 🤷♀️
I think it’s way more fun to mess around and problem solve Linux issues than do whatever is you’re doing on windows.
Maybe you have some specific windows use case, in which case my condolences, but you will probably never be as safe you’d like on windows ever
Isn’t LTSC a thing for Windows 11? When I still had a Windows 10 on dual boot LTSC was the only usable thing for me.
It is pretty much always more dangerous to not update. The internet is an extremely hostile environment (from a security perspective). You really should avoid having devices that are not updated or EOL connected to it.
Based on what? The number of attacks you see thwarted by the shiny new update?
I’d say you keep at least one out-of-date honeypot, so you can get some hard data on how important those ai «updates» are
Based on basic security principles. There is not a real security expert out there that would ever tell you to not update. Leaving a backdoor in your network as a “honeypot” is an absolutely awful idea.
You are also conflating security updates with feature updates. Please take a look at the different terminology.
Anyway if you really hate all the bloat of Windows there is a wide variety of other operating systems to choose from that also offer security updates.
Nice try NSA
Every new internet-connected feature they add seems to also increase attack surface, so this is a weird dilemma. Still better to keep things up to date in the short term. In the long term, I’ve made the choice to switch to an OS that respects user preferences.
Edit: I’ve also heard that the Windows 11 IoT enterprise edition doesnt come with all this bloat but still gets regular security updates
And every new update you get more crap running in the background, stunting your performance and draining your battery
There is an option to pay for Extended Security Update (ESU) support for Windows 10. It’ll give you access to critical security and Windows Defender antivirus updates, but no fixes or updates to features. There are three ways to pay:
- “Free” if you’re syncing data to their cloud (pay by letting them datamine your data and settings)
- With Microsoft Reward points, which I believe are primarily earned by using Bing (pay by letting them datamine your searches)
- For $30 a year, at least for the first year, though I’ve read the price goes up each year as they want to drive everyone to Win11.
The program would conceivably allow you to kick the can down the road, possibly as far as Oct. 2028. Personally, I opted instead to switch to Linux months ago instead, and don’t regret my choice.
Ltsc is the better route for those staying on Windows with no Microsoft login being required.
Windows 10 ltsc will get security updates until 2032.
What’s more dangerous for privacy?
To even run Windows at all for personal / business / random use.
Try to get as much as possible off Windows. You can transfer the remaining Windows-only programs to a virtual machine in snapshot mode, or if necessary, a real machine with a backed up image, that you can reimage regularly.
Not everyone can get off Windows. But get as much as you can. Isolate what’s left.
I’d still install security updates but hold off on the bigger, optional updates until some time has passed. I don’t quite fancy being MS’s unpaid beta tester.
Sadly, the only totally-safe way to use ANY computer - windows, mac, linux, anything - is to never connect it to a network in the first place.
Everything else is complicated.
