One Simple Change That Blocks 92% of Cyber Threats

One Change That Blocks 92% of Cyber Threats

This isn’t clickbait. Microsoft’s own data shows that removing one setting on your Windows computer can stop more than 92 percent of malware and ransomware attacks before they start.

And yet most small businesses aren’t doing it.
Worse, most people don’t even know this setting exists.

The good news, you can change it yourself. No cost. No tools. No IT background required.

This article explains the security fix, why it works, and the exact steps to do it safely.

Why this one change works

Most malware and ransomware infections succeed because someone on the computer accidentally installs something.
A link, a download, a popup, a fake update — the usual suspects.

But here’s the key detail:

🛑 Malware almost always requires “Administrator” rights to install itself.
🟢 If your everyday Windows login is a Standard User, the attack fails.

That’s it. One setting stops most threats cold.

Even if someone clicks the wrong thing.
Even if the attacker is sophisticated.
Even if the antivirus misses it.

This is why Microsoft reports that removing admin rights blocks more than 92 percent of device-level attacks.

Will this affect how you use your computer?

Not really.

Your everyday account will still work normally, including:

  • Browsing

  • Email

  • Microsoft 365

  • Local software

  • Teams, Zoom, QuickBooks, etc.

The only difference is that Windows will ask for an Admin password when something tries to install or make system-wide changes.

And that’s exactly the protection you want.

How to Make This Change on Your Windows PC

You can do this safely in a few minutes.

Follow these steps:

Step 1 — Create a new Admin account

  1. Open Settings

  2. Go to Accounts

  3. Select Family & other users / Other Users

  4. Click Add account

  5. Create a new local user and name it something like:
    YourNameAdmin

  6. Choose a very strong password

  7. Store that password somewhere secure
    (we recommend a password manager)

⚠ Important Caution:
If you forget the administrator password, you may be locked out of making system changes — possibly permanently.
Make sure the new admin account uses a password that’s both strong and memorable, and store it somewhere safe (not on the computer).

Step 2 — Restart your computer and sign in as the new Admin

  1. Restart your PC

  2. Log in using your new YourNameAdmin account

This ensures you’re operating from an account with proper admin rights before making changes, it's also a good way to test the password you just created.

Step 3 — Remove Admin rights from your everyday login

Once signed in as the new Admin:

  1. Go back to Settings

  2. Open Accounts

  3. Select Family & other users / Other Users

  4. Click your regular everyday user account (Not the Admin)

  5. Choose Change account type

  6. Change it from Administrator to Standard User

  7. Click OK

Done.
Your everyday user is now protected from 92% percent of common threats.

Want help doing this for your business?

We can apply this change across your entire team.

  • No cost for existing clients

  • No obligation for anyone else

  • Can be done remotely

  • Takes just a few minutes per computer

Final thought

Cybersecurity doesn’t always require expensive solutions.
Sometimes the biggest improvements come from simple housekeeping.

This one change dramatically reduces your risk — and gives you a safer, more resilient Windows environment with almost no disruption.

Stay safe out there.