To better protect your valuable data from malicious apps and threats like Ransomware, Microsoft introduces a new feature called Controlled folder access in the recent Windows 10 Falls Creators Update. When enabled, it monitors the changes that apps make to the files in certain protected folders and sends you a notification when a blacklisted app is trying to make a change to these files.
To enable the feature, Open Windows Defender Security Center by double-clicking the Windows Defender icon on the taskbar or the hidden area on the taskbar.
Go to Virus & threat protection (the shield icon on the left), and click Virus & threat protection settings.
Scroll down a little bit until finding the section called Controlled folder access and set the switch to On.
By default, the following folders are already being protected once the feature is turned on:
- Documents
- Pictures
- Movies
- Music
- Desktop
- Favorites
If you have data saved in the folders that are not in the default protected list, you can add them by clicking Protected folders link and add them to the protected list in the next window. You can also enter network shares and mapped drives as well.
Note that if you have changed the default location of these folders you will need to add them to the Protected folders manually.
You can also use the Allow an app through Controlled folder access link to allow an app that you trust but is being blocked by Controlled folder access feature to access your protected files.
With the ransomware getting so crazy lately, this controlled folder access feature Microsoft has put it out in motion is a very useful and welcomed feature that could save a lot of people’s data down the road.
Controlled folder access is a new feature that first appeared in Windows 10 Build 16232 for Windows Insiders and later made the official debut in Windows Fall Creators Update. Microsoft also has named the section straight for “Ransomware Protection” in Windows 10 version 1803 and late releases.
Click the Manage Controlled folder access link and it leads you to:
Nice, thanks for pointing this out Kent.
Should one protect Windows system files and Program Files?
I guess you could but I wouldn’t. I am more concerned about data. 🙂
I wish they had made it easier to add exceptions once it blocks an app.
As in give me the option to allow the app in the same way Windows Firewall does.
Or at least list the blocked apps and let me add an exception there, the way it does for virus detection.
Won’t that make adding and removing files a bit more tedious? I haven’t used this feature before.
My Epson scan application is now blocked. I added all the .exe files to the permitted list and it is still blocked. Do I need to reboot? Sacrifice and bury a chicken at the cross roads?
Cannot see any Defender utilities as I use Norton Security. Is there a way to get there without disabling Norton?