Except maybe Microsoft is abusing that trust:
These "security" updates are the ones that collect your browsing and usage history and send it to the Borg cloud. This is a terrible, no good, very bad thing for a security tool to do. And quite frankly, this is something that security guys have discussed for years, going all the way back to Ken Thompson's Turning Award speech Reflections On Trusting Trust. For a Turning Award lecture, it's pretty accessible even to lay persons - just skip over the code bits to this part:
The actual bug I planted in the compiler would match code in the UNIX "login" command. The replacement code would miscompile the login command so that it would accept either the intended encrypted password or a particular known password. Thus if this code were installed in binary and the binary were used to compile the login command, I could log into that system as any user.It's an undetectable security backdoor introduced from a trusted source - trusted source code, in Thompson's thought experiment. Microsoft has done something very like this. "Trust us," they said. "We will keep you secure if you just turn on automatic updates." And then that trusted channel becomes the means that your privacy is raped and pillaged to fatten their bottom line.
At this point it's clear that most people simply will not be able to keep their Windows computer secure. People like Carl and myself certainly can, although it looks like we both run Linux Mint (and you should, too). But people who aren't computer security nerds simply won't have the background to examine every single Microsoft security update and make a rational decision about the risks of installing it vs. the risks of not installing it.
Bottom line: as a security professional I cannot recommend that anyone should run Windows if they care about their security and privacy. Trust can no longer be trusted, at least from Microsoft. If there are certain Windows applications that you absolutely cannot live without, then keep a dual-boot system where you can boot up Windows for those times you absolutely need that app, but only run that app. The rest of the time, run Linux, which won't sell out your privacy to fatten its bottom line. It will never do that, because Open Source has no bottom line.
And you should read Carl's blog, which has a regular menu of techie geekdom, libertarian rants, and that sort of thing. Plus humor like 50 Nerds of Grey. Snerk.