I don’t see how you can quality control a corrupt file ending up in an operating system like Windows. But even if you could, I will continue to point the finger at Microsoft, because if a corrupt file in a driver can bring down an entire system without auto-recovery, then that is terrible software development. Like I said, a sign of utter lack of defensive programming on Microsoft’s side. The comparison with Linux and macOS is apt. They’re architecturally different and for very good reasons. Nobody is suggesting switching OS, but having redundancy in the system. That can even mean a staggered update across the network. Allowing all machines to take the update at the same time is simply irresponsible.