Windows 10 wants to bring a friend, cool?

Countless articles have been written about how insecure Windows 10 is by default, yet I found myself amazed at this gem today:

By default, Windows 10 automatically allows a Bluetooth device to enable the new Windows 10 Mobile WiFi hotspot. This should not be an out-of-the-box setting. Microsoft tries to excuse it by saying the device must be paired, but take your laptop anywhere near the next Defcon and see how quickly it’s turned into a zombie forwarding traffic for botnet attacks.

Regardless of the scenario, this setting should be turned off by default. This is security of least privilege. Make the user decide she wants to allow a paired device to enable the mobile hotspot remotely.

Windows 10’s default privacy & security settings are a joke. To see for yourself, just read Lifehacker’s guide to waking up from Windows 10’s privacy nightmare.

When users upgrade their operating system they expect it to improve their computing security. Windows 10 gives you the opposite. Microsoft really should be ashamed of themselves, and if they give any shits about protecting their users they’ll address these vulnerabilies in an upcoming release.

If you liked this, please click the green heart at the bottom of this article.