Re: Security tips
I don't think it's viable to never open a PDF these days; too much documentation and official forms come in that format.
Instead install and use non-standard PDF reading software that knows how to open and display those documents, but doesn't ever try and execute code from them, or allow editing, or introduce other attack vectors.
Obviously the sweet spot is software that's successful enough to justify ongoing maintenance and bug fixes (in case any security flaws are found) but obscure enough that it's not worth the effort of trying to hack.