How-To Geek - Protect Your Files From Ransomware

Page 2 of 4 FirstFirst 1234 LastLast
  1. Wynona's Avatar
    Posts : 28,015
    Windows 10 20H2 Build 19042.928
    Thread Starter
       #11

    Bree said:
    I 'played with it' from the moment it was first included in version 1803. I leave Controlled Folder Access turned on for all my machines find it completely unobtrusive.

    The trick is to allow your preferred apps access. Many (such as MS Office) will automatically be allowed access, but some (mainly 3rd-party apps) will not. While the protection side of the ransomware protection has changed little since 1803, in the beginning it was almost impossible to determine what had been blocked. You had to go into event viewer just to find the path and name of any blocked executable that needed to be granted access.

    With each new version since then the reporting of which apps to grant access has improved. Now in 1903/1909 you just need to open Windows Security's ransomware protection, click on 'Add an allowed app' and pick from a list of recently blocked apps.

    I have about half a dozen apps in my 'allowed' list now, and I can't remember the last time I was blocked from doing anything. Once your apps are on the 'allowed' list you won't notice the protection in action.

    Add or Remove Allowed Apps for Controlled Folder Access in Windows 10
    Thanks again, Bree.

    I tried creating a test in Word, and it wasn't allowed. I may have done something wrong in setting it up, so I'll go back and revisit with it on Build 19551.

    Tomorrow, though. I'm about done in for tonight. Then again, when I wake up in the middle of the night . . . again . . . I may try working with it.

    I really do like the idea of being able to "cordon off" my data files.
      My Computer

  2. Barman58's Avatar
    Posts : 3,931
    Windows 10 Pro x64 2004 - 19041 - 264 XP/Vista/Win7/Win8.1 in VM for testing
       #12

    I've not used Microsoft's implementation of Ransomware protection, as I have used Bitdefender's Pro setup for a number of years, ( from when the Ransomware explosion happened a few years ago).

    I can recall almost switching it off in the initial stages, the odd layout of my data storage meant that It took awhile for the system to setup what was protected, what was allowed access, and who was allowed access. which was a right royal PITA at times

    I have to say that when I read this post I had to check that I still had it switched on, I had not had a "peep" from it for a long time, but it was there in the background doing it's job.

    Ransomware, Although not as high in the public consciousness as it was, it is still out there, so needs thinking of when we set up our system protection.

    It's a pain, but a lesser one than losing access to your "stuff", we keep lives on our computers these days, best to look after them
      My Computers

  3. Wynona's Avatar
    Posts : 28,015
    Windows 10 20H2 Build 19042.928
    Thread Starter
       #13

    Barman58 said:
    I've not used Microsoft's implementation of Ransomware protection, as I have used Bitdefender's Pro setup for a number of years, ( from when the Ransomware explosion happened a few years ago).

    I can recall almost switching it off in the initial stages, the odd layout of my data storage meant that It took awhile for the system to setup what was protected, what was allowed access, and who was allowed access. which was a right royal PITA at times

    I have to say that when I read this post I had to check that I still had it switched on, I had not had a "peep" from it for a long time, but it was there in the background doing it's job.

    Ransomware, Although not as high in the public consciousness as it was, it is still out there, so needs thinking of when we set up our system protection.

    It's a pain, but a lesser one than losing access to your "stuff", we keep lives on our computers these days, best to look after them
    Oh, boy, Nigel! I think what I've done (it's back on with advice from Bree) is adequate to separate my data files from the rest of the computer.

    I can easily restore with a backup, but if things get really tough, my setup is simple enough, and I have all my product keys listed in a safe place, so it wouldn't be impossible to have things going again within a day or so.
      My Computer

  4. Wynona's Avatar
    Posts : 28,015
    Windows 10 20H2 Build 19042.928
    Thread Starter
       #14

    Wynona said:
    Thanks again, Bree.

    I tried creating a test in Word, and it wasn't allowed. I may have done something wrong in setting it up, so I'll go back and revisit with it on Build 19551.

    Tomorrow, though. I'm about done in for tonight. Then again, when I wake up in the middle of the night . . . again . . . I may try working with it.

    I really do like the idea of being able to "cordon off" my data files.
    OK, I have Controlled Folder Access turned back on, and following your advice, I checked what had been denied access.

    I had indeed been denied access to WinWord and two other files, so I gave access and all is well. I'm sure I'll have to fix a few new "issues" going forward, but I can work with that.

    I think we can lay my inadequacy to rest now.

    I will go through this thread and pick out the nuggets for safe keeping.

    Thanks again, everyone, for your help. It's much appreciated.
      My Computer

  5. Bree's Avatar
    Posts : 18,834
    10 Home x64 (20H2) (10 Pro on 2nd pc)
       #15

    Wynona said:
    I'm sure I'll have to fix a few new "issues" going forward, but I can work with that.
    You may get a notification of a block after you install new software or occasionally after you upgrade exiting apps. But now you know what symptoms to expect you can easily update your list of allowed apps.
      My Computers

  6. jimbo45's Avatar
    Posts : 10,503
    Windows / Linux : Arch Linux
       #16

    Hi folks

    nothing special needed against Ransomware provided you have WD etc all turned on and take regular clean backups --and Store the backups offline after taking them.

    If you get any warning :

    1) DO NOT PANIC

    2) HARD SWITCH OFF PC -- DO NOT power off via software -- just pull the plug out !!! or if a laptop hold power off button until it powers off.

    3) Disconnect PC from internet and all other usb peripherals e.g external HDD's etc.

    4) Boot your "stand alone" bootable recovery disk with a CLEAN backup image also attached --DO NOT CONNECT TO INTERNET

    5) Optionally re-format HDD -- not necessary usually but if you are mega paranoid can be done

    6) Restore Image

    7) remove bootable rescue media and your image backup disk

    8) Re-boot computer

    9) reconnect to internet

    10) Have a nice drink and give a two fingured "Churchillian Salute" to those stupid scumbags who think they can con people --and another two fingured salute to some of those stupid companies trying to sell you "Anti Ransomware protection things". You might just as well be an "old time restaurant owner paying the Mob "Protection money ". !

    Enjoy --and ALWAYS REGULARLY TAKE CLEAN BACKUPS. !!! -- Encryption or whatever won't help in these cases --they aren't trying to STEAL your data but to DESTROY IT " !!!!!

    Cheers
    jimbo
      My Computer

  7. Barman58's Avatar
    Posts : 3,931
    Windows 10 Pro x64 2004 - 19041 - 264 XP/Vista/Win7/Win8.1 in VM for testing
       #17

    The writers of ransomware,

    are not trying to read your data, it's not important enough to them, to bother getting it

    Are not interested in deleting your data they're not spiteful four year olds breaking a siblings toys.

    They are interested in your money, and they assume, (often correctly), that the data will be important enough to the owner to induce them to pay

    backups made often and stored offline will help, but if you've just taken a never to be repeated picture a few hours after your last backup and moved it to your PC - ransomware attacks can happen at any time and even Microsoft's solution will work for most attacks so why not use it as an additional layer of security ?
      My Computers

  8. ThrashZone's Avatar
    Posts : 7,108
    3-Win-7Prox64 2-Win10Prox64
       #18

    Hi,
    Guess you won't be following any links in email for a while
      My Computers

  9. Wynona's Avatar
    Posts : 28,015
    Windows 10 20H2 Build 19042.928
    Thread Starter
       #19

    Barman58 said:
    The writers of ransomware,

    are not trying to read your data, it's not important enough to them, to bother getting it

    Are not interested in deleting your data they're not spiteful four year olds breaking a siblings toys.

    They are interested in your money, and they assume, (often correctly), that the data will be important enough to the owner to induce them to pay

    backups made often and stored offline will help, but if you've just taken a never to be repeated picture a few hours after your last backup and moved it to your PC - ransomware attacks can happen at any time and even Microsoft's solution will work for most attacks so why not use it as an additional layer of security ?
    My sentiments exactly, Nigel! Thanks.
      My Computer

  10. jimbo45's Avatar
    Posts : 10,503
    Windows / Linux : Arch Linux
       #20

    Wynona said:
    My sentiments exactly, Nigel! Thanks.
    Hi there
    If you have valuable data like that -- just dynamically update to NAS or Cloud Server once you've taken the pics or whatever.

    No Probs !!!

    Please PEEPS --don't get paranoid or implement expensive "Non Solutions" whether from Malwarebytes or others --I used to think Malwarebytes was fantastic --but that was in the days before W10 and the latest security systems became a proper reasonable OS --at least as far as security was concerned --Malwarebytes and other things like that 100% unnecessary against Ransomware attacks etc --WD with the current Real Time protection on latest versions of W10

    Way more than than good enough --even for "Pirate Bay" users etc.

    As I pointed out -- (and others too) --these people aren't after your data --however many times you encrypt it etc -- they just want to panic you into PAYING THEM DOSH --and once a victim who has been imbecellic enough to pay you'll stay for ever on the "Suckers List".

    Just do what I've suggested -- important data like say wedding photos etc backup to NAS / Cloud / offline external storage immediately after creating it or as soon as possible afterwards.

    "So Seemples ---- REALLY IT IS".

    If you have sensible CLOUD or NAS systems you can ensure the data upload is done anytime you want via job scheduling -- so your data can always be up to date before you get threatened.

    Some of these so called I.T security consultants being paid big bucks for advising on HOME computer security (not speaking here about Corporate or decent size Office type LAN's) IMO are just as bad as the Ransomware companies --and probably cost the unfortunate users of these people EVEN MORE MONEY than the Ransomware scammers. !!!

    Cheers
    jimbo
      My Computer


 
Page 2 of 4 FirstFirst 1234 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 22:17.
Find Us




Windows 10 Forums