To understand the importance of enabling Ransomware Protection on your computer, you must first understand how ransomware attacks work . These attacks target your important data — documents, photos, and videos — encrypting them and making them inaccessible. Cybercriminals then demand a ransom in exchange for the decryption key.
The attack is quick, meaning that once your computer is infected, it will immediately reboot (or take you to the desktop) and you will see that all of your files have been encrypted. A single text file will appear, containing instructions on how to contact the cybercriminals responsible for the attack. While this is a typical pattern, the attack can also manifest in other forms.
This forces you to pay the ransom in hopes of regaining access to their data. However, in some cases, you may not receive the decryption key even after payment.
Why should you enable Ransomware Protection on Windows?
Ransomware can get onto your device in a number of ways. You might click on a malicious link while browsing, connect to an external hard drive infected with ransomware, or accidentally download a malicious app or compromised file from the web. Turning on Ransomware Protection will protect your data even if you accidentally make these mistakes.
Controlled Folder Access prevents unknown or suspicious applications from modifying protected folders, even if you accidentally install untrusted software. Since files encrypted by ransomware are nearly impossible to decrypt without paying the ransom, enabling this feature saves you the financial burden of paying the scammers.
Unlike third-party security and antivirus programs that typically only include Ransomware Protection in their expensive premium packages, Windows Security offers this feature for free. This feature allows you to protect your system from ransomware attacks without having to invest in premium third-party software, saving you monthly costs.
Windows also continuously monitors your system for suspicious activity and blocks potential ransomware attacks in real time. This proactive defense not only increases confidence in your system's security, but also gives you peace of mind, allowing you to work and browse without constant worry about cyberattacks.
Finally, always keep Ransomware Protection enabled because you never know when you might fall victim.
How to Enable Ransomware Protection in Windows 11
Before making these changes, make sure you are using an admin account. Guest accounts do not have access to this feature.
1. Click the Win button and scroll down the Start menu to find the Settings tab. Click it to open the Settings menu .
Another way is to look for the Settings icon on pinned items or use the search bar to search for “Settings”.
Open Settings
3. When the Settings tab launches, select Privacy & Security .
Select Privacy & Security
4. Find the Windows Security menu.
Find the Windows Security menu
5. Click the Open Windows Security button to access the ransomware settings.
Click the Open Windows Security button
6. A new window will open. Here, click on the Virus & Threat, Protection menu item and scroll down to find the Ransomware Protection option .
Find the Ransomware Protection option
7. Click Manage Ransomware Protection to get a list of ransomware-related options.
Click Manage Ransomware Protection
8. Look for the Controlled Folder Access option in the right pane.
Find Controlled Folder Access
9. Toggle the switch to enable the feature.
Turn the trigger switch to On
Ransomware Protection is now enabled. Here you can also add (whitelist) program folders that may give false warnings in protected folders.
How to use PC with Ransomware Protection enabled
Once Ransomware Protection is enabled, you will need to whitelist some of your favorite programs so they can gain access to the controlled folder. These steps will help you avoid false positives and allow new programs to be installed:
1. Click Allow an app through Controlled folder access in the Controlled Folder Access window .
Click Allow an app through Controlled folder access
2. Click Add an allowed app .
Click Add an allowed app
3. Select Browse all apps or Recently blocked apps to see which Windows Security (formerly known as Windows Defender) apps have been archived or blocked.
Select Browse all apps or Recently blocked apps
4. Selecting Browse all apps will open a pop-up window that allows you to select all executable files with the .exe extension.
5. In Recently Blocked Apps , you can delete harmful or unwanted apps or restore the ones you want to keep.
Add or remove applications as desired
To avoid mistakenly flagging useful software or apps as ransomware, add them to the Protected Folders section.