Hi S_K,
The reduced size definitions remove very old threat detections that we have not had telemetry for within a certain period of time. (I cannot share specifics around these metrics.) Threats which have been active recently would still have signatures included in the reduced size definitions, or certainly major threats like Wannacry would have their detection included in these definitions. For any threat where there is currently a major outbreak / concern (such as we saw with the Wannacry situation), that means we will be getting current telemetry for that threat, and therefore its signature would still be included in reduced size defs.
Overall I would still suggest the Darknet client for any system which cannot leverage the cloud-based definitions.
If your thin clients cannot accomodate a Darknet installation due to disk space, then Symantec's Critical Systems Protection (CSP) is a product you may wish to look into. This product is designed for situations like what you have described here.
I sincerely hope this information is helpful. Please let me know if you have further questions I can assist with! Thank you.