Windows includes built-in Ransomware Protection. How to turn it on

Ransomware poses a significant threat to both personal and corporate systems, capable of encrypting files and demanding a ransom for their release. While personal computers may not be the primary targets, it remains essential to implement preventive measures to safeguard against potential attacks. Utilizing Windows’ built-in ransomware protection and maintaining regular backups of critical files are effective strategies to reduce risk. The impact of ransomware can be severe, as demonstrated by groups like Scattered Spider, which successfully disrupted operations at Las Vegas casinos, resulting in millions of dollars in damages.

Although large organizations frequently find themselves in the crosshairs of cybercriminals, personal computers are equally vulnerable. Therefore, adopting a proactive stance is vital. Windows Defender provides integrated ransomware protection, but it is equally important to back up files consistently and keep security software up to date.

How ransomware works

• File Encryption: Ransomware encrypts files, rendering them inaccessible to users.
• Ransom Demands: Attackers typically request payment in cryptocurrency, complicating the tracing of transactions.
• Widespread Impact: Ransomware can disrupt operations for individuals and large corporations alike, leading to extensive operational paralysis.

Steps to Protect Yourself:

1. Enable Controlled Folder Access: This Windows feature prevents unauthorized applications from accessing sensitive files.
2. Regular Backups: Back up essential files to an external drive or a cloud service that ransomware cannot infiltrate.
3. Email Vigilance: Exercise caution with email attachments and links, as phishing is a common method for ransomware distribution.
4. Antivirus and Updates: Keep antivirus software current and ensure your operating system receives regular updates to address vulnerabilities.

To activate the built-in ransomware protection on Windows, follow these steps:

1. Navigate to Settings > Update & Security. Open the Windows Security app by pressing Alt + Spacebar, typing windows security, and hitting Enter. Alternatively, access it through the Start Menu or the Settings app by selecting Windows Security from the left panel.
2. Select Windows Security in the sidebar.
3. Click on Virus & threat protection.
4. Scroll down and select Manage ransomware protection in the “Ransomware protection” section.
5. Toggle Controlled folder access to “On.”

This setting limits app access to default folders such as OneDrive, Documents, Pictures, Videos, Music, and Favorites. Users can also manually include additional folders in this protection scheme.

It’s important to note that not all applications are automatically restricted from accessing protected folders under Windows’ Controlled Folder Access. For example, Microsoft Office programs are considered trusted by default and can modify files within these designated locations.