System files & folders usually also affected because almost all users click "Yes" when UAC showed when they run malicious program.
They don't even read it, because the message is vague, unlike Android which shows list of permission.
Well.. you are right.. but in this case we are really talking about very uneducated user regarding computers and 'technical stuff'.
Unfortunately UAC can almost always be bypassed if it is not explicitly set to the highest (most secure) option, which is not default.
There are numerous ways to bypass it, some are fixed, some are not.
So this makes it even more dangerous on a computer in comparison to an android
In my case it's not. On the computer the kids have "users" and I am the admin. On the phone they can install and run a "game" and I may find out about the "surprise" much later.
But this still applies, no ?
On the computer malware could steal any data/files/etc. which the user (i.e. your kid) has access too (ignoring UAC exploits).
On an (unrooted) android the malware could only steal information in its user context (own app data) plus things possible with given permission (external storage, camera, etc..)
But accessing camera, storage, etc.. is always possible under windows. You don't even have to give permission for doing that.
One of the most dangerous things you can install on your mobile is a custom keyboard, which acts as a keylogger.
And on windows.. well.. it is not really hard to implement a keylogger.
You have about 3 different types of them:
- Via polling (GetAsyncKeyState)
- Via hooking (SetWindowsHookEx)
- Registering as input device
I mean.. hell.. there are 2 inbuilt accessible windows libraries available to create a keylogger with just a few lines of code.
If you refrain from installing a custom keyboard on an android, the chances of having a keylogger is close to zero (excluding unknown exploits), simply because an installed application has no access to the keyboard / buffer / etc.
Unfortunately this does not apply to OP's problem (clipboard hijacking), since this is readable for any application on android.
So, to get on-topic again, this also wouldn't have had him protected against this kind of malware.
I mean.. you could theoretically forbid applications to access the clipboard, but this also means you can't paste in them anymore.
I am no way saying that android is secure and windows is not.. however it is much easier to have your mobile clean than a windows computer.
But shared devices create new problems per se, whether smartphone, computer, tablet, etc.
