Do you depend on Windows 10’s native Microsoft Defender security app to protect your PC from malware?
If so, you’ll be happy to know that Microsoft recently added native ransomware protection to Windows 10.
Note: If your PC has a third-party antivirus program installed on it you won’t need to do this because that security app already has ransomware protection built-in.
This post only applies if your PC is running Windows’ native Microsoft Defender Antivirus.
In a nutshell, Windows 10’s ransomware protection locks down key folders to prevent malware from accessing and altering the files contained within them.
By default, not every folder on the hard drive or SSD is protected from ransomware when ransomware protection is enabled, but you have the option of manually adding any folder on any drive to the protected list. More on that later…
How does ransomware work?
If ransomware successfully attacks your PC the malware will encrypt all the photos and other important files on the hard drive or SSD and demand that you pay a ransom in order to obtain the decryption key.
If you refuse to pay the ransom your files will be lost forever.
And even if you do pay the ransom there’s a good chance that the hacker will simply keep your money and never send you the decryption key – in which case your files will still be lost forever!
Protecting your files against ransomware…
The best defense against ransomware is to get into the habit of creating frequent backups of your PC’s hard drive or SSD, but having Windows Defender’s ransomware protection enabled adds a powerful extra layer of security to your PC’s file system.
The problem is, even though Windows Defender now has ransomware protection built in, Microsoft has decided to leave it disabled by default. That means unless you take the steps required to enable it your critical files will still be at risk of being encrypted by ransomware.
Luckily, it’s very easy to enable Windows Defender’s ransomware protection and add additional folders to the protected folders list. Just follow the steps below.
First, let’s enable ransomware protection on your PC…
1 – Click the Start button.
2 – Click the Settings icon (it looks like a “gear” or “cog”).
3 – Click Update & Security.
4 – In the left-hand column, click the Windows Security link.
5 – Click Virus & threat protection.
6 – Scroll down to the “Ransomware protection” section and click the Manage ransomware protection link.
7 – Toggle the “Controlled folder access” setting to On.
Congratulations! Windows Defender’s native ransomware protection is now enabled on your PC.
Now it’s time to check to see which folders are currently being protected against ransomware…
1 – Click the Protected folders link.
2 – Click Yes in response to the “User account control” dialog.
3 – Review the list of protected folders to see which folders are currently being protected against ransomware.
4 – (Optional) If you want to add a folder on any attached drive to the protected folders list simply click Add a protected folder and then navigate to the folder you wish to add and click Select Folder.
Note: You can add as many folders as you want to the protected folders list.
That’s it. You’re done! Ransomware protection is now enabled in your PC’s Microsoft Defender app and your selected folders are now being protected.
Bonus tip: If you ever suspect that your Windows PC is infected with malware this post has step-by-step instructions for getting rid if it.
Never miss a tip! Click here to sign up for my free Daily Tech Tips Email Newsletter!