Atlanta-area nonprofit healthcare system has eliminated systems admin rights on over 2,700 of its Windows XP clients. Gwinnett Health Systems saw a huge drop in malware infections after leaving power user rights intact. “You don’t just get malware by being a local admin,” says network administrator Keith Brown. Windows Vista’s UAC feature constantly prompts IT users who are testing it every time they install or run an application. “If Vista is going to prompt you every time it needs to determine your user privilege, that’s unacceptable,” Brown says.”]
Source: https://www.darkreading.com/analytics/company-cuts-privileges-to-cut-malware