Connect with us

Tech News

Windows 10 build 16232 integrates a specific feature against ransomware



Windows 10 build 16232

A security measure that provides for the protection of specific folders to which access is only allowed to applications present in a whitelist

The build 16232 of Windows 10 that Microsoft released on insider channel during the day yesterday, contains some new security features to the general strengthening of the system against the latest threats, including a which aims specifically to try to limit the damage that can result from the system being compromised by a ransomware.

The protection mechanisms put in place files from operating systems for years are based on a combination of ownership and access permissions. In those systems that are used by multiple users, this approach is a pretty effective way to reduce the incidence of problems: a user can not access (or can access only limited) to someone else’s property files that operates on the same system. It ‘the same approach that has also shown some effectiveness to protect the users’ operating system, in fact thanks to the permissions and privileges mechanism.

With the advent of ransomware context plague, however, it is heavily altered, changing the characteristics of the threat: in this case in fact the danger is not represented by another user amending encrypting files, but by a program that operates under the identity user and that may modify all the files that are accessible to the identity of the user. In other words, the ransomware can read and write the same files that the user can read and write.

From this account Microsoft has developed the functionality Controlled Access Folder that falls under the Windows Defender hat. The working principle of this new feature is to set up some folders to be protected and accessible only by the app found in a whitelist: All access attempts by unauthorized app would then be blocked by Defender. In order to reduce the need for management and maintenance of features, some applications will be automatically placed in the whitelist. Microsoft does not specify exactly which app, but it is reasonable to assume that the app store will be automatically populated with the necessary permits.

Windows 10 build 16232

In theory, an approach of this kind should go to limit the ability of a ransomware to encrypt user data, but on the practical side of the real effectiveness of these measures will depend on the strength of Folder Access Controller. Because what actually functions will be necessary, for example, that functionality to prevent macro Word or Excel to access a protected folder even if the application from which they depend is in the whitelist. If a ransomware can find a way to “delegate” the dirty work to another application whitelisting, the effectiveness of the new measures will be effectively neutralized. The example of the Word macro is not accidental, because in recent days has been given a demonstration of the possibility of compromising the new Windows operating system 10S through these mechanisms.

Being a build released on insider channel, all features are considered in the form of beta, so in testing and evaluation, and therefore may never be released to the end user.


Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *




bsnl ussd codes bsnl ussd codes
Geeky2 months ago

BSNL USSD Codes List (BSNL Balance Check) (2018)

HELLO GUYS, are you looking for bsnl ussd codes?, no worries, we are here to help you but first let’s...

PDF to Word Converter PDF to Word Converter
Guides3 months ago

How To Edit PDF on Your Mobile Phone – Easy Way – PDF TO WORD CONVERTER

PDF TO WORD CONVERTER – The tech advances have brought us many new and interesting breakthroughs in the digital sphere...

check vodafone net balance check vodafone net balance
Geeky3 months ago

Vodafone: How to check 2G/3G/4G data balance & validity [ Check Vodafone Net Balance ] (2018)

Wondering how to check Vodafone net balance? Well if the answer is yes then we are here to help you...

screenshot on OnePlus 5T screenshot on OnePlus 5T
Guides3 months ago

How to capture a screenshot on OnePlus 5T | Guide

How to capture a screenshot on OnePlus 5T-After so many rumors emerged on the web, OnePlus has finally unveiled its latest flagship OnePlus...

follow hashtag on instagram follow hashtag on instagram
Guides3 months ago

How to follow hashtag on instagram | APK Technical

Follow hashtag on instagram – Instagram has introduced a new feature that allows you to follow the hashtags like we...

change wifi password change wifi password
Guides5 months ago

How to change wifi password in windows 10

Change wifi password in windows 10 -Your Wi-Fi router comes with a default network name and password, and both usually are...

windows 10 search not working windows 10 search not working
Computers5 months ago

Fix windows 10 search not working | Solution | APK Technical

Solutions if the windows 10 search not working There are several possible causes when the windows 10 search not working...

Screen overlay detected Screen overlay detected
Guides6 months ago

Fix ” screen overlay detected ” error on android – APK Technical

In this post we will talk about how to fix the error ” Screen overlay detected ” and will explain in depth what...

err_connection_timed_out err_connection_timed_out
Guides6 months ago

How to Fix err_connection_timed_out in Windows

Recently I stood up to ERR_CONNECTION_TIMED_OUT mistake while looking some sites using google chrome. This mistake is shown together with...

How to change Bsnl wifi password How to change Bsnl wifi password
Guides6 months ago

How to change Bsnl wifi password

BSNL is one of the biggest broadband suppliers in India. In the case that you have BSNL Broadband and Wi-Fi... Protection Status