..how it's far too easily clicked on, in any OS,. that's the issue.
This is the fundamental problem with cybersecurity -
doing the wrong thing if often similar to
doing the right thing in terms of effort and subconscious ease of differentiation.
~Have some kind some kind of verification process, of a link, in the OS.
~Maybe a secondary key/password to open a link.
..it needs to be hard to open something, regardless of wanting more speed & more speed ect..
This would
greatly interfere with getting things done in a timely fashion. The differentiation between the broader internet and the local intranet is somewhat weak in the modern office environment. Web apps have taken over so many things and they might be hosted on the intranet or by a third party.
Right now on my work machine I have the following open: Outlook, SQL console, several internal network reference portals (browser), an agent portal to the main OSS application I support (browser), the desktop client for the OSS application, another web portal to the OSS application (browser), Teams, Slack, a ticketing system (browser), a vendor EMS desktop app, and a logfile portal (browser). I often have to use vendor ticketing systems via browser. Company sharepoint portals are hosted by MSFT. I also have to search things using the broader internet often - bits of SQL, vendor websites, telecom standards, etc.
For all its various and many faults, Windows has become reasonably solid - the NT codebase that Windows 2000 and subsequent versions evolved from is quite hardened relative to the disaster that was Windows 95/98/Me. The
perimeter is all but gone from the modern enterprise network -
all endpoints are initially treated as potentially hostile. Firewalls abound.
At the end of the day it boils down to the
user since they need adequate access and permissions to get work done - even if you add in additional
Are You Sure... prompts. The tradeoff to additional authentication and prompts signing away your firstborn if you f__k up is that productive work is slowed or doesn't happen. And we know that such earnings lose effectiveness
quickly or are soon bypassed because they introduce needless noise.