The concept of least privilege relates to users having an account on a computer / system that has the absolute minimum permissions needed to do their work.
If a criminal manages to access a computer or system via administrative privileges they can hide their tracks, exfiltrate data, and ensure they remain undetected for a long period of time. If however a criminal gains access to the computer system credentials of a person with limited access, then the criminal is restricted on what they can do.
While it is understandable that some computer users in a business environment may want the flexibility and freedom to download and update software on their work computer themselves, this can cause a significant cyber security risk to the computer, data, and system. For home users, good practice is to create two accounts on their home computers, one with the administrative rights and a secondary account without administrative rights that serves as the everyday computer account
Restricting administrative rights, will allow users to continue their work while reducing the attack surface for criminals.