I always remember WannaCry as a reason to keep Windows updated (no, I wasn’t affected by it), but every new update is full of AI bloat :S
I keep all the communication with the mothership blocked and open just the Wuauserv, Bits and few domains just for updates, and every new update that are new services trying to call home, and this one update sitting here waiting for me to allow internet access I read the content and it is very descriptive about “Copilot+ PCs unique features”, “AI-Powered experience”, “Accessibility and input” (they added AI to a bunch of stuff), “User interface and experience” (more AI and widgets), then they say they added this Windows Hello and Windows Share that I don’t even want to know, and for security all they say is “Critical security fixes are included to help keep your system protected against emerging threats.” but to get this I need to get all their AI crap that might be a bigger security and privacy risk than whatever “Critical security fix” they included :S
Like everyone else is saying, updating is the best policy for security, especially/ironically with the increasing internet connectedness of the OS. I’ve heard of things like Windows Shut Up! That disables various undesirable “features” of windows forcefully, there might be something like that for Win11 that you can run after updates. Or maybe a YouTube channel that tells you what new things to combat. If there is someone please let me know.
I’m partial to Privacy.Sexy. I like to be able to see the code and know what’s being done when I click the button. There is also WPD, which is good too. I also employ scripts from Black Viper’s work, reducing the number of unnecessary services that run in the background. These scripts are based on Black Viper’s scripts.. I also use a program called HostsMan which allows you to block various things like Windows telemetry in the host file itself. Some people have reported that Windows treats hostfile modifications as a virus, but I haven’t encountered that on W10 Pro.