With ransomware on the prowl every other day, it has become all the more important to ensure that critical files are protected from being encrypted or altered. The Windows 10 Fall Creators Update includes a new functionality called Controlled Folder Access that can help prevent modification of critical files and folders by unauthorized software. This tutorial will show you how to enable this functionality to protect both personal and corporate data.
https://www.notebookcheck.net/How-to-protect-critical-data-from-ransomware-in-Windows-10.282296.0.html
This security feature has already been defeated using MS Office OLE modules to get around Windows CFA. From what's been reported, Microsoft doesn't see OLE as a major vulnerability; don't expect a patch anytime soon.
Quote from: Gumwars on February 12, 2018, 13:44:11
This security feature has already been defeated using MS Office OLE modules to get around Windows CFA. From what's been reported, Microsoft doesn't see OLE as a major vulnerability; don't expect a patch anytime soon.
Hi Gumwars,
Thanks for pointing out the recent development. I read the news and am not very much satisfied by Microsoft's response. While they are partially right in saying it's not a full fledged security boundary, people will enable Exploit Guard in the hopes that it cordons off all unwanted access. By that extension, rogue plugins of whitelisted programs can also be expected to override CFA. Hope that Microsoft enhances this feature by adding more granular functionality.