Momwe mungatetezere Windows 10 ndi 11 kuchokera ku ransomware

Momwe mungatetezere Windows 10 ndi 11 kuchokera ku ransomware. Ransomware ndiyofala, koma pali njira zingapo zomwe anthu ndi olamulira angatetezere Windows 10 ndi makompyuta a 11. Izi ndi zomwe muyenera kuchita.

Mitu Yovumbulutsidwa Onetsani

Cryptolocare. Ndikukufuna. Mbali yakuda. Conti. Medusa Locker. Chiwopsezo cha ransomware sichidzatha pafupifupi ; Nkhanizi zimabweretsa malipoti osalekeza a mafunde atsopano amtundu woyipawu wa pulogalamu yaumbanda yomwe ikufalikira padziko lonse lapansi. Ndiwodziwika kwambiri chifukwa cha omwe akuwukirawo amalipira nthawi yomweyo: imagwira ntchito polemba mafayilo pa hard drive yanu, kenako ndikukufunani kuti mulipire dipo, nthawi zambiri mu bitcoin kapena cryptocurrency ina, kuti muwafotokozere.

Koma simuyenera kukhala wozunzidwa. Pali zambiri zomwe Windows 10 ndi ogwiritsa 11 angachite kuti adziteteze ku izo. M'nkhaniyi, ndikuwonetsani momwe mungadzitetezere, kuphatikizapo momwe mungagwiritsire ntchito chida cha Windows anti-ransomware.

(Olamulira, onani "Zomwe dipatimenti yanu ya IT ikuyenera kudziwa za ransomware ndi Windows" kumapeto kwa nkhaniyi.)

Nkhaniyi ikuganiza kuti mukutengera kale njira zodzitetezera ku pulogalamu yaumbanda, kuphatikiza kugwiritsa ntchito mapulogalamu odana ndi pulogalamu yaumbanda ndipo osatsitsa zomata kapena kudina maulalo a imelo kuchokera kwa omwe akutumiza osadziwika ndi imelo yomwe ikuwoneka yokayikitsa. Dziwaninso kuti nkhaniyi yasinthidwa Windows 10 Kusintha kwa Novembala 2021 (Version 21H2) ndi Windows 11 Kusintha kwa Okutobala 2021 (Version 21H2). Mukadakhala ndi mtundu wakale wa Windows 10, zinthu zina zitha kukhala zosiyana.

Gwiritsani ntchito foda yoyendetsedwa

Microsoft imasamala mokwanira za ransomware kuti apanga chida chosavuta chosinthira anti-ransomware mwachindunji Windows 10 ndi Windows 11. Chotchedwa Controlled Folder Access, chimakutetezani mwa kulola mapulogalamu otetezeka komanso otetezedwa mokwanira kuti apeze mafayilo anu. Kudutsa kwa mapulogalamu osadziwika kapena ziwopsezo zodziwika za pulogalamu yaumbanda ndizosaloledwa.

Mwachikhazikitso, mawonekedwewo samayatsidwa, kotero ngati mukufuna kudziteteza ku ransomware, muyenera kuiwuza kuti iyambe kugwira ntchito. Mutha kusintha momwe zimagwirira ntchito powonjezera mapulogalamu atsopano pagulu loyera la mapulogalamu omwe ali ndi mafayilo, ndikuwonjezera mafoda atsopano kuphatikiza mafoda omwe mumawateteza mwachisawawa.

Kuti muyigwiritse ntchito, muyenera kupeza Windows Security. Pali njira zingapo zopezeramo onse Windows 10 ndi Windows 11:

  • Dinani muvi wakumanzere kumanzere kwa taskbar, kenako dinani chizindikiro cha Windows Security - chishango.
  • Dinani Yambani > Zikhazikiko Kuti mutsegule pulogalamu ya Zikhazikiko, ndiye sankhani Kusintha & Chitetezo> Windows Security Mu Windows 10 kapena Zazinsinsi & Chitetezo> Windows Security Mu Windows 11.
  • Gwiritsani ntchito Windows search. In Windows 10, bokosi losakira lili mu taskbar pafupi ndi batani loyambira. In Windows 11, dinani chizindikiro chofufuzira pa taskbar kuti mutsegule zofufuzira. Mtundu mawindo chitetezo mubokosi losakira lotsatira ndikusankha Windows Security za zotsatira.

Mu Windows Security, sankhani Chitetezo ku ma virus ndi zoopsa . Pitani ku gawo la Chitetezo cha Ransomware ndikudina Dipatimenti ya Chitetezo cha Ransomware . Kuchokera pazenera lomwe likuwoneka, pansi pa Control Folder Access, sinthani kusintha ntchito . Mudzafunsidwa mwamsanga ngati mukufuna kusintha. Dinani "Inde" .

Sinthani batani losinthira kuti ntchito Kuti muyatse mwayi wolowa mufoda. (Dinani pachithunzichi kuti mukulitse).

Simuyenera kuzisiya pamenepo ndikumva otetezeka pakadali pano, chifukwa pali mwayi woti muli ndi zikwatu zomwe mukufuna kuteteza ndipo mawonekedwewo amawanyalanyaza. Mwachikhazikitso, imateteza zikwatu za Windows (ndi zikwatu zomwe zili pansipa) monga C:\Users\ Winawake \ Documents , kumene Winawake Ndilo dzina lanu la Windows. Kuphatikiza pa Zolemba, zikwatu zamakina a Windows zimaphatikizapo Desktop, Nyimbo, Zithunzi, ndi Makanema.

Koma mafoda anu ena onse ndi masewera abwino pa ransomware iliyonse yomwe imapita ku kompyuta yanu. Chifukwa chake ngati mugwiritsa ntchito posungira mitambo ya Microsoft ya OneDrive, mwachitsanzo, zikwatu zilizonse za OneDrive ndi mafayilo pakompyuta yanu sizitetezedwa. Popeza kuti Microsoft ikuyesera kusuntha aliyense yemwe angathe kupita ku OneDrive, ndichosowa chodabwitsa.

Kuti muwonjezere zikwatu zomwe mukufuna kuteteza, dinani ulalo Mafoda otetezedwa zomwe zimawonekera mutayatsa Controlled Folder Access. Funso likuwoneka likufunsa ngati mukufuna kusintha. Dinani "Inde" . Dinani batani onjezani chikwatu chotetezedwa" pamwamba pa mndandanda wa zikwatu zotetezedwa zomwe zikuwonekera, ndiye kuchokera pazenera lomwe likuwonekera kufoda yomwe mukufuna kuteteza ndikudina "Select Foda" .

Dinani Onjezani chikwatu chotetezedwa Tetezani mafoda anu ambiri pogwiritsa ntchito chikwatu cholamulidwa. (Dinani pachithunzichi kuti mukulitse).

Pitirizani kuwonjezera zikwatu motere. Kumbukirani kuti mukawonjezera chikwatu, zikwatu zonse pansi pake zimatetezedwanso. Chifukwa chake ngati muwonjezera OneDrive, mwachitsanzo, palibe chifukwa chowonjezera zikwatu zonse pansi pake.

(Dziwani: Kutengera mtundu wanu wa OneDrive, mutha kubwezeretsa mafayilo a OneDrive, ngakhale simukuwawongolera mwa kulowa mu Controlled Folder. Kuti mumve zambiri, onani zolemba za Microsoft" Bwezerani mafayilo kapena zikwatu zomwe zachotsedwa mu OneDrive . ")

Ngati nthawi ina iliyonse mwaganiza zochotsa chikwatu, bwererani ku Protected Folders skrini, dinani chikwatu chomwe mukufuna kuchotsa, kenako dinani. Kuchotsa . Dziwani kuti simungathe kuchotsa zikwatu zilizonse zotetezedwa za Windows pomwe mawonekedwewo atsegulidwa. Mutha kuchotsa okhawo omwe mwawonjeza.

Microsoft imatsimikizira kuti ndi mapulogalamu ati omwe akuyenera kuloledwa kupeza zikwatu zotetezedwa, ndipo mosadabwitsa pakati pawo pali Microsoft Office. Microsoft sinasindikize mndandanda wa mapulogalamu ololedwa, choncho ganizirani kuchitapo kanthu kuti mulole mapulogalamu omwe mumawakhulupirira kuti azitha kupeza mafayilo anu.

Kuti muchite izi, bwererani pazenera pomwe mudayatsa Controlled Folder Access ndikudina Lolani pulogalamu kukhala ndi mwayi wolowa mufoda . Funso likuwoneka likufunsa ngati mukufuna kusintha. Dinani "Inde" . Kuchokera pazenera lomwe likuwoneka, dinani Kuyika pulogalamu ndikololedwa , yendani ku fayilo yomwe mungathe kuyika pulogalamu yomwe mukufuna kuwonjezera, ndikudina kutsegula , kenako tsimikizirani kuti mukufuna kuwonjezera fayilo. Monga ndikuwonjezera zikwatu pamndandanda wamafoda otetezedwa, mutha kuchotsa pulogalamuyi pobwereranso pazenerali, ndikudina pulogalamu yomwe mukufuna kuchotsa, kenako ndikudina. Kuchotsa .

Langizo: Ngati simukudziwa komwe mafayilo omwe angatsatidwe a mapulogalamu omwe mukufuna kuwonjezera pagulu loyera ali, yang'anani dzina la chikwatu chomwe chili ndi dzina la pulogalamuyo mu WindowsProgram Files kapena WindowsProgram Files (x86) , kenako fufuzani zomwe zingachitike mu vol.

Pangani zosunga zobwezeretsera ... koma chitani bwino

Mfundo yonse ya ransomware ndikusunga mafayilo anu mpaka mutalipira kuti mutsegule. Chifukwa chake njira imodzi yabwino kwambiri yotetezera chiwombolo ndikusunga mafayilo anu. Mwanjira iyi, palibe chifukwa cholipira dipo, chifukwa mutha kubwezeretsa mafayilo anu kuchokera pazosunga zobwezeretsera.

Koma zikafika pa ransomware, si zosunga zobwezeretsera zonse zomwe zimapangidwa mofanana. Muyenera kusamala posankha luso losunga zobwezeretsera ndi ntchito. Ndibwino kugwiritsa ntchito kusungirako mitambo ndi ntchito zosunga zobwezeretsera m'malo mongothandizira pagalimoto yolumikizidwa ndi kompyuta yanu. Ngati musunga zosunga zobwezeretsera pagalimoto yolumikizidwa ndi kompyuta yanu, kompyuta yanu ikakhala ndi kachilombo ka ransomware, zosunga zobwezeretsera zitha kusungidwa pamodzi ndi ma disks ena aliwonse mkati kapena olumikizidwa ndi kompyuta yanu.

Onetsetsani kuti zosungira zanu zozikidwa pamtambo ndi zosunga zobwezeretsera zimagwiritsa ntchito mtundu - ndiko kuti, sikusunga mtundu waposachedwa wa mafayilo anu onse, komanso mtundu wakale. Mwanjira iyi, ngati mafayilo anu aposachedwa atenga kachilombo, mutha kubwezeretsanso kuchokera kumitundu yakale.

Ntchito zambiri zosunga zobwezeretsera ndi zosungira, kuphatikiza Microsoft OneDrive, Google Drive, Carbonite, Dropbox, ndi ena ambiri, amagwiritsa ntchito mtunduwo. Ndibwino kuti muzolowere mawonekedwe amtundu uliwonse womwe mukugwiritsa ntchito pakali pano, kuti mutha kubwezeretsa mafayilo mosavuta.


Microsoft Word imagwiritsa ntchito luso lomasulira la OneDrive mu mbiri yake ya mtundu. (Dinani pachithunzichi kuti mukulitse).

Pezani chitetezo chaulere cha ransomware

Pulogalamu iliyonse yolimbana ndi pulogalamu yaumbanda imaphatikizanso chitetezo cha anti-ransomware, koma pali mapulogalamu ambiri omwe amalonjeza kulunjika mwachindunji pa ransomware. Ambiri amalipidwa, koma palinso zosankha zaulere, monga zomwe ndalemba apa.

Bitdefender amapereka Zida zomasulira zaulere zomwe zingatsegule deta yanu Ngati mukuukiridwa ndi ransomware ndipo dipo limasungidwa. Amatha kungochotsa deta yomwe yasungidwa pogwiritsa ntchito magawo ena kapena mabanja a ransomware, kuphatikiza REvil/Sodinokibi, DarkSide, MaMoCrypt, WannaRen, ndi ena ambiri. Kaspersky amapereka pulogalamu Anti-ransomware kwaulere Kwa onse ogwiritsa ntchito kunyumba ndi bizinesi, ngakhale pali zoletsa pazida zomwe mungagwiritse ntchito.

khalani olondola

Microsoft imatulutsa zigamba zotetezedwa nthawi zonse Windows 10 ndi Windows 11, ndipo zimagwiritsidwa ntchito pokhapokha kudzera pa Windows Update. Koma ngati mumva za kuphulika kwa ransomware, musadikire kuti Windows Update iyambe - muyenera kudzipezera nokha nthawi yomweyo kuti mutetezedwe ASAP. Ndipo si zosintha za Windows zokha zomwe mukufuna kupeza. Mukufunanso kuwonetsetsa kuti Windows Security, chida cha Microsoft cholimbana ndi pulogalamu yaumbanda, chili ndi matanthauzo aposachedwa odana ndi pulogalamu yaumbanda.

Kuti muchite zonsezi mu Windows 10, pitani ku Zikhazikiko> Kusintha & Chitetezo> Kusintha kwa Windows ndikudina batani . Onani zosintha . Mu Windows 11, pitani ku Zokonda> Windows Update ndikudina batani . Onani zosintha . (Ngati zosintha zikukuyembekezerani kale, mudzaziwona zitalembedwa m'malo mwa batani Onani zosintha .) Ngati Windows ipeza zosintha, imaziyika. Ngati ikufunika kuyambiranso, idzakuuzani.

 

Sikuti muyenera kuda nkhawa ndi Windows kukhalabe zigamba, komanso mapulogalamu ena. Ngati mugwiritsa ntchito mapulogalamu odana ndi pulogalamu yaumbanda kupatula Windows Security, onetsetsani kuti ndi matanthauzidwe ake a pulogalamu yaumbanda ndi zaposachedwa.

Mapulogalamu ena apakompyuta anu ayeneranso kusinthidwa. Chifukwa chake onani momwe pulogalamu iliyonse imasinthidwa ndikuwonetsetsa kuti gawo lililonse limasinthidwa pafupipafupi.

Letsani Macros mu Microsoft Office

Ransomware imatha kufalikira Kudzera Macros mu Office owona , kotero muyenera kuzimitsa kuti mukhale otetezeka. Microsoft tsopano imayimitsa mwachisawawa, koma sizikutanthauza kuti yazimitsidwa mu Office yanu, kutengera nthawi yomwe mudayiyika komanso ngati mwaisintha. Kuti muzimitsa, mukakhala mu pulogalamu ya Office, sankhani Fayilo> Zosankha> Trust Center> Zikhazikiko za Trust Center ndikusankha kapena Letsani ma macros onse azidziwitso أو Letsani ma macros onse popanda kuzindikira . Ngati muwaletsa ndi chidziwitso, mukatsegula fayilo, mudzalandira uthenga wochenjeza kuti macros ndi olemala ndikukulolani kuwayendetsa. Ingoyendetsani ngati mukutsimikiza kuti ikuchokera kotetezeka komanso kodalirika.

 

Zomwe dipatimenti yanu ya IT ikuyenera kudziwa za ransomware ndi Windows

Pali zambiri zomwe IT ingachite kuti makampani azikhala opanda ransomware. Chodziwikiratu: gwiritsani ntchito zigamba zaposachedwa zachitetezo osati pamakompyuta onse abizinesi, komanso ma seva onse ndi zida zina zilizonse zamabizinesi.

Ichi ndi chiyambi chabe. Dipatimenti yanu ya IT ikuyenera kuletsa SMB1 Windows networking protocol yomwe imadziwika kuti ndi yosatetezeka. Zowukira zingapo za ransomware zidafalikira pa protocol yazaka 30; Ngakhale Microsoft imanena kuti palibe amene ayenera kuzigwiritsa ntchito.

Nkhani yabwino ndiyakuti Windows 1709 mtundu wa 10, womwe unatulutsidwa mu Okutobala 2017, pamapeto pake unachotsa SMB1. (Simu Windows 11 mwina.) Koma izi ndi za makompyuta okha omwe ali ndi kukhazikitsa koyera kwa mtundu wa 1709 kapena mtsogolo, kuphatikizapo atsopano omwe atuluka. Makompyuta akale omwe asinthidwa kuchokera kumitundu yam'mbuyomu ya Windows akadali ndi protocol yomangidwa.

Pali malo angapo dipatimenti yanu ya IT ingapite kukapeza chithandizo kuti izimitse. Malo abwino oyambira ndi Chikalata Chochita Zabwino Zachitetezo Kwa Mabizinesi Ang'onoang'ono ndi Apakati Kuchokera ku US-CERT, yoyendetsedwa ndi US Department of Homeland Security. Imalimbikitsa kuletsa SMB1, ndiye "kutsekereza mitundu yonse ya SMB pamalire a netiweki poletsa TCP port 445 yokhala ndi ma protocol ogwirizana pa madoko a UDP 137-138 ndi TCP port 139, pazida zonse zamalire."

Nkhani Yothandizira Microsoft ” Momwe mungazindikire, kuyatsa ndi kuletsa SMBv1, SMBv2, ndi SMBv3 mu Windows Tsatanetsatane wa momwe mungatsekere protocol. Imalimbikitsa kupha SMB1 ndikusunga SMB2 ndi SMB3 yogwira ntchito, ndikungoyimitsa kuti ithetse kwakanthawi. Kuti mudziwe zaposachedwa, zambiri zozimitsa SMB1, pitani ku Microsoft TechNet nkhani ” Letsani SMB v1 m'malo oyendetsedwa ndi Gulu Policy . "

Oyang'anira atha kugwiritsa ntchito Controlled Folder Access (yomwe takambirana kale m'nkhaniyi) kuti aletse chiwombolo kuti chisatseke mafayilo ndi zikwatu pamakompyuta ndi Windows 11 kapena Windows 10 mtundu 1709 kapena mtsogolo. Atha kugwiritsa ntchito Gulu la Policy Management Console, Windows Security Center, kapena PowerShell kuti atsegule mwayi wofikira kwa ogwiritsa ntchito pamanetiweki, kusintha mafoda oti atetezedwe, ndikulola kuti mapulogalamu owonjezera apeze mafoda ena kusiyapo zoikamo za Microsoft. Kuti mupeze malangizo, pitani ku nkhani ya Microsoft" Yambitsani mwayi wowongolera mufoda “Kuyatsa, ndi ku” Sinthani Mwamakonda Anu Kufikira Kwamafoda Sinthani Mwamakonda Anu kuti ndi zikwatu ziti zomwe ziyenera kutetezedwa komanso mapulogalamu omwe akuyenera kuloledwa kudutsa.

Vuto limodzi lomwe lingakhalepo pakuwongolera kupezeka kwa zikwatu ndikuti limatha kuletsa mapulogalamu omwe ogwiritsa ntchito nthawi zambiri amapeza mafoda. Chifukwa chake Microsoft imalimbikitsa kugwiritsa ntchito njira yowunikira kaye, kuti muwone zomwe zidzachitike mukayatsa Folder Access Control. Kuti mumve zambiri zamomwe mungachitire izi, pitani ku Documentation. Gwiritsani Ntchito Chitetezo Kuchokera ku Microsoft.

Monga tafotokozera pamwambapa, Office macros imatha kufalitsa ransomware. Microsoft tsopano imaletsa macros omwe adatsitsidwa pa intaneti mwachisawawa, koma kuti akhale otetezeka, IT iyenera kugwiritsa ntchito Gulu Policy kuti iwaletse. Kuti mudziwe momwe mungachitire izi, pitani ku " Letsani ma macros mu mafayilo a Office kuchokera pa intaneti Mu zolemba za Microsoft Macros adzatsekedwa pa intaneti mwachisawawa mu Office "ndi ku" Kuthandiza ogwiritsa ntchito kukhala otetezeka: Letsani ma macros a intaneti mwachisawawa positi Office Blog".

mawu otsiriza

Nkhani yabwino mu zonsezi: Windows 10 ndi Windows 11 ali ndi zida za anti-ransomware zomangidwamo. Tsatirani malangizo omwe tafotokoza apa kuti mupewe chiwopsezo cha ransomware.

Zolemba zofanana
Sindikizani nkhaniyo

Onjezani ndemanga