And you can avoid most of the risks in the usual ways: Don't run Windows. However if you really do prefer Windows, then don't run your browser in an account with Admin rights. If you really want to run Windows with Admin rights, then install Windows in a Virtual Machine under some other OS, & discard all changes each time you shut down the VM.

Layered defence is the best approach.