if microsoft would create a good product, like linux, they wouldn't have to worry so much about updates and patches...
You are kidding, right? Do you know how many times a year a BSD and Nix kernel will be updated for various security fixes and enhancements, not to mention the 3rd party patches for other programs that interact with the NIX/BSD systems. Don't ever confuse Windows with being the OS with the only/most/worst patches. Because if you do, then you've never read a bug list for any Operating System -ever-.

let's take netbsd, it's far more safer then windows will ever be, and they managed to do this without having as many resources and money as microsoft!
Normally, I would obliterate you for something like this. Luckily, Ms Mittens handled it. It is never the OS that determains security, it is how well the admin knows the OS he is in.