Scenario: Virtual Desktop vs Secure Shopping - Running a malicious file


I have a question.

I already know that Virtual Desktop acts like a big sandbox on the system and anything run there will not affect it.

But how about Secure Shopping mode?

While it has been designed with a different purpose (hence the coexistence Secure Shopping - Virtual Desktop), will running an unknown file under secure shopping mode (let’s say drive by download or intentional download) place it in sandbox as well? Will process isolation apply protect any program in secure shopping from other programs in secure shopping? or only in relation to the real system?

For example… If you download malicious exe from browser in Secure Shopping Mode and run the exe in Secure Shopping mode… will the browser security be compromised or will it still be functional in relation to that exe?

Thank you.


Mentioned unknown file gets auto-sandboxed by CIS.