So far I don't like the win10 network & app function embedding esp with the new batch of ransomware doing the rounds.
I've seen 2 systems completely screwed & no way to recover without paying up or wiping. Clearly there are still a lot of backdoors & workarounds that just aren't being covered.
CryptoDrop sounds like it might help...
Virtualization seems like a better solution with a VM just for the internet etc. But W10 doesn't like stuff like a virtual desktop apparently
In fairness, Ransomware has nothing to do with Win10, and any unpatched exploit is sure to most likely to exist in prior editions too. In fact, you are safer with Win10. Sure, recently affected users may of been running Win10, because so many people have migrated to Win10 by now. You are much more vulnerable on XP or Vista, and about equally vulnerable on 7.
This ransomware stuff is just another form of malware, so the same practices apply - Don't download/run things unless you are *certain* you trust the source.
For example, in our case, you know our files come from bitsum.com *and* they are digitally signed. And we know Bitsum has never 'done wrong', so you can trust us. Blindly downloading trial software, especially with all these nasty and tricky installer bundles (which, again, bitsum.com *never* uses), is a recipe for disaster.
The only new twist is now they came up with a way to force infected people to pay money, and it's worked well for them.
There is no product that is going to 100% protect you against this threat because, like malware, the authors will adapt. You must be judicious, cautious, secure, and keep excellent backups.