使用 Windows Defender 利用防護設定來保護您的資料Protect your data with Windows Defender Exploit Guard settings

本文適用于 Microsoft 365 商務版 Premium。This article applies to Microsoft 365 Business Premium.

您可以設定原則,協助保護組織中的 Windows 10 裝置免受惡意程式碼攻擊、勒索代碼和網際網路上的惡意內容的攻擊。You can set up policies to help protect the Windows 10 devices in your organization from malware attacks, ransomware, and malicious content on the internet.

減少裝置的攻擊面Reduce the attack surface of devices

此設定會針對惡意程式碼和惡意應用程式通常使用的特定行為,以感染機器,例如:This setting targets specific behaviors that are typically used by malware and malicious apps to infect machines, such as:

  • 惡意程式碼會在 Office app 或電子郵件中包含為可執行檔和腳本。Malware included as executable files and scripts in Office apps or email.

  • 混淆或可疑之可疑的腳本。Scripts that are obfuscated or otherwise suspicious.

  • 一般日常工作中通常不會啟動的應用程式行為。App behaviors that aren't usually initiated during normal day-to-day work.

如需此設定的詳細資訊,請參閱減少攻擊面For more information about this setting, read Reduce attack surfaces.

保護資料夾來抵擋勒索軟體等威脅Protect folders from threats such as ransomware

開啟此設定時,會由 Windows Defender 防毒軟體評估所有應用程式(任何可執行檔(包括 .exe、.scr、.dll 檔及其他),以判斷應用程式是否為惡意或安全的。When this setting is turned on, all apps (any executable file, including .exe, .scr, .dll files and others) are assessed by Windows Defender Antivirus to determine if the app is malicious or safe. 如果將應用程式決定成為惡意或可疑的應用程式,則不允許對任何受保護的資料夾中的任何檔案進行變更。If an app is determined to be malicious or suspicious, then it won't be allowed to make changes to any files in any protected folder.

此設定在協助保護您的檔和勒索軟體的資訊時特別有用,可嘗試加密您的檔案並將檔案保留在 hostage 中。This setting is especially useful in helping to protect your documents and information from ransomware that can attempt to encrypt your files and hold them hostage.

如需此設定的詳細資訊,請參閱使用受控資料夾存取權來保護重要的資料夾For more information about this setting, read Protect important folders with controlled folder access.

在網際網路上防止網路存取潛在的惡意內容Prevent network access to potentially malicious content on the internet

網路保護可協助從網際網路型事件降低裝置的受攻擊面。Network protection helps reduce the attack surface of your devices from internet-based events. 它可防止員工使用任何應用程式來存取可能在網際網路上主控網路釣魚詐騙、利用方式及其他惡意內容的危險網域。It prevents employees from using any application to access dangerous domains that may host phishing scams, exploits, and other malicious content on the internet.

如需此設定的詳細資訊,請參閱保護您的網路For more information about this setting, read Protect your network.