Most people talk about how attractive targets they are, but they are wrong. Internet runs on Linux (yeah, I know, there are a few exceptions, but on a statistical level, it does), and a hacked server is worth much more more than a hacked laptop/desktop.

The difference is that Linux and BSD (which MacOS is based on) were designed from the start with security in mind. Windows, on the other hand, isn’t. It didn’t even have user login in the beginning, and while it has been somewhat fixed, it still treats security as something which can be tacked on later, not something you need to build everything on from the start.

That’s why Windows is such an easy target for malware, while Linux and MacOS isn’t.