Many small business computers are running slower and less securely than they should be and the culprit is often default Windows settings. These overlooked configurations can expose your business to cyber threats and drain system performance. Here is our list of 5 Windows settings to disable and we’d suggest sooner rather than later.
At SofTouch Systems, we help Texas businesses take back control. In this guide, we reveal five Windows settings to disable right now for stronger protection and faster PCs, no expensive upgrades required.
Thank you for reading this post, don't forget to subscribe!
Why You Should Care
Whether you’re managing employee workstations or your own office PC, default Windows settings are often optimized for convenience, not security. This can:
- Increase exposure to ransomware
- Allow tracking of your behavior
- Drain memory and CPU performance
The fix is simple, but you need to know where to look. Here are 5 Windows settings you need to disable.
1. Turn Off the Advertising ID
What it does: Tracks your activity to personalize ads across apps and services.
Why disable it: It’s a privacy concern and opens up tracking data to third-party apps.
How to fix it:
Go to Settings > Privacy & Security > General, and turn off:
“Let apps show me personalized ads by using my advertising ID.”
2. Disable Cortana (Windows 10)
What it does: Cortana listens for voice commands and stores voice activity in the cloud.
Why disable it: It eats up memory and creates a potential privacy loophole.
How to fix it:
Run this PowerShell command as admin:
powershellCopyEditGet-AppxPackage -allusers Microsoft.549981C3F5F10 | Remove-AppxPackage
3. Stop Unnecessary Background Apps
What they do: Apps like Xbox Game Bar, Skype, or Maps run in the background.
Why disable them: They waste resources and may open network ports to the internet.
How to fix it:
Go to Settings > Apps > Installed Apps, click each app and disable background activity.
4. Disable Remote Desktop (RDP) if Unused
What it does: Allows others to remotely control your PC, often a major ransomware vector.
Why disable it: If not used, it’s a huge unnecessary risk.
How to fix it:
Go to Control Panel > System > Remote Settings, and check:
“Don’t allow remote connections to this computer.”
5. Turn Off Network Discovery & File Sharing
What it does: Allows PCs on the same network to discover and access shared files or printers.
Why disable it: If not managed properly, this opens you to lateral movement in a cyberattack.
How to fix it:
Go to Control Panel > Network and Sharing Center > Advanced sharing settings, and disable:
- Network Discovery
- File and Printer Sharing
Pro Tip: Automate These Fixes at Scale
If your business manages multiple PCs, applying these fixes manually is time-consuming and inconsistent. At SofTouch Systems, we configure security policies through Group Policy, Intune, or RMM software for complete coverage.
Protect, Optimize, and Simplify
Disabling these risky Windows settings is a fast, free way to protect your small business and extend the life of your hardware. But it’s just the start.
STS offers:
- Endpoint protection & patch management
- Remote monitoring & support
- System hardening & security audits
- Backup and disaster recovery planning
Let’s Secure Your Systems Today
Don’t leave security up to default settings.
Schedule your free security checkup with STS now and take back control of your business IT.