INFRA
INFRA
INFRA
Microsoft takes the good fight to ransomware with new Windows Defender feature
Microsoft Corp. is attempting to take up the good fight against ransomware with the latest Windows update, including a trial of a new anti-ransomware feature within Windows Defender.
Windows Build 16232, which was released as part of the Windows 10 Fall Creators Update, includes a feature within Windows Defender Antivirus that allows users designate specific folders or directories on their computers that applications can’t access. Called Controlled Folder Access, the new feature is specifically designed to thwart ransomware attempting to hijack and encrypt user files.
“Controlled folder access monitors the changes that apps make to files in certain protected folders,” Microsoft software engineer Dona Sarkar said in a blog post. “If an app attempts to make a change to these files, and the app is blacklisted by the feature, you’ll get a notification about the attempt. You can complement the protected folders with additional locations, and add the apps that you want to allow access to those folders.”
The new feature requires users to manually turn it on, but then Controlled Folder Access protects the Documents, Pictures, Movies and Desktop folders by default. Users can’t opt out of protecting those folders without turning the feature off altogether. Certain application are automatically whitelisted from the feature, although exactly what applications those are was not specified.
In addition to the new ransomware-fighting feature, the new build of Windows also adds a number of other features to Windows Defender, including improvements to Windows Defender Application Guard and improved exploit protection.
Application Guard has been upgraded to cover favorites, cookies and saved passwords that persist across Application Guard sessions. The persisted data isn’t shared or surfaced on the host but will be available for future Microsoft Edge in Application Guard sessions, according to the company. The improved exploit feature now allows users to audit, configure and manage Windows system and application exploit mitigation settings from the Windows Defender Security Center.
Windows Build 16232 is not available as an update to the average user, just for those who subscribe to the Windows Insider service for non-public beta Windows testing releases.
Image: dcmot/Flickr
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
