Windows historically allowed a dire situation with security, so no-one really freaking knows what software is safe and what not. Even monopoly they have on deciding what software is safe and what is not (extended validation certification procedure) is not helping anyone, because anyone can circumvent it with photoshop and 10$

Are you saying Microsoft shouldn't care about making a secure system and they can just outsource the subject to a third company which will upload .exe to their server and tell user to wait few hours before it can be launched?