Code signing offers slight protection from malware but not as you might think. If a company signs an installer, or executable then it tells you it came from them but not what it does. It could still be malicious, or it could be inadvertently bundled with malware in DLLs or scripts and you wouldn’t know. You’re just hoping the company has done its due diligence and you trust them to run.

Microsoft does have an antivirus system on top and fingerprints downloads too and applies some kind of trust score that is better if an exe is signed. There is probably no single mitigation that stops malware infection but apply lots of smaller mitigations in in depth and most people will be safe.

The irony is Microsoft still lets people run files ending with .scr way too easily. Much of the malware on torrent websites is a file ending with .scr knowing the OS will hide the extension, e.g. movie.mp4.scr appears as movie.mp4 in File Explorer and people click through and get infected.

It really should be a 3 level setting, disallow/allow & check/allow. Where the latter option is available but users are strongly advised to only select it if they are sure. Because I would not be surprised if a lot of sideloaded content comes from warez sites and is infested with malware so allowing & checking is still preferable and protects people to some extent.

Their lawsuit will fail for the simple reason they only have to age verify UK citizens, not everyone. But it does go to show how stupid this law actually is. If the UK wanted to block 4chan (for example) to under 18s, then ISPs should provide optional filtering software with every account that can be enabled per device to do it. It would be far more effective than expecting websites around the world to police the UK’s own laws.

I think if I were any non-US government I’d be very seriously thinking about not using Microsoft software at this time, particularly if it connects to the cloud. And that goes for companies with government contracts, or merely companies who are potential targets of industrial espionage.

That said, LibreOffice needs to tap the EU for funding to broaden its features and also improve the UX because it’s not great tbh. It can be extremely frustrating using LibreOffice after using MS Office, in part because the UI is so different, noisy with esoteric actions, and very unrefined compared to its MS counterpart. That needs funding and to get to the point that somebody can pick up LibreOffice for the first time and not be surprised or stuck by the way it behaves.