A senior reseacher at Kaspersky Labs highlights some of the improved features and strategies for Windows 10:

http://securelist.com/blog/68445/windows-10-preview-and-security/

http://securitywatch.pcmag.com/microsoft-windows/331467-windows-10-what-s-new-in-security

 

Microsoft is attempting to better tighten down the new version of Windows the operating system by disallowing untrusted applications from installing and verifying their trustworthiness with their digital signature. This trusted signing model is an improvement, however, this active handling is not perfect. APT like Winnti’s attacks on major development shops and their multiple, other significant ongoing attack projects demonstrate that digital certificates are readily stolen and re-used in attacks. Not just their core group’s winnti attacks, but the certificates are distributed throughout multiple APT actors, sharing these highly valued assets, breaking the trust model itself to further their espionage efforts.