In my previous post about “More on the WMF vulnerability” and what can you do, I assumed everyone is running with a LUA (Least-Privileged User Account) aka an account without Admin rights, member of the user group only or domain users only.
I should have stated as Point 1. Run with a LUA account!!
So just in case you are still running an admin account to do your email and surf the web, now might be a very good time to change this BAD habit!!