How To Secure Microsoft Windows 10 In Eight Easy Steps

Looking for the best way to secure Windows 10? Here are eight expert tips.

Simple Image / Literate with Getty Images

A man walks into a bar full of confusion and says, "How do I secure my Windows 10 PC?" who want to protect it a bit. Thankfully, this is not so difficult to do. All you have to do is follow these eight easy steps. No need for men.

What's wrong with Windows 10?

Like it or hate it, Microsoft Windows is the most common non-smartphone operating system since many of you have read about owning your first computer. This is just a common occurrence. It's a fact that Windows, in general, and Windows 10 in general, was afraid of its security more than its fair share. During 2019 I learned about "worrisome and vicious" malware that was used by Windows 10 security software, a hidden backdoor used by APT attackers, a zero-day serious threat to Windows 10 users, even a Windows threat, and yes, Windows 10 The seemingly never-ending stream of update issues

Still, and for those who can't doubt Windows XP or Windows Aficionado, I risk wrath, Windows 10 being the most secure version of the OS so far. In which case do you need a guide to secure it? The good question and simple answer are that you can always improve what you find in securing a Windows computer. Refresh the box when you need to get the security configurations right or after a few years of ownership, you can better identify these settings in a less secure way.

I've asked a bunch of security experts to share their top tips for Windows 10 protection in all flavors from Windows 10 Home to Pro and beyond. Here are the sums of the hard-earned wisdom of eight simple steps to securing Windows 10; Some are geared towards business users, others to consumers but most of all apply to everyone.

Step 1. Enable BitLocker

Richard Henderson, head of Global Threat Intelligence, at last line, said, "It is essential that you turn on-disk encryption. Both Windows 10 Pro and Windows 10 Enterprise include BitLocker, not Windows 10 Home." It said, "All versions of Windows include some version of disk encryption. , "Says Henderson," and there's a lot of free online The "option to enable full disk encryption reduces the chances of data misuse on your computer. Once you enable BitLocker, or you choose a full disk encryption solution, remember that the "recovery key is secure in the USB store both lock and paper" solution architectures Matt Aldridge said of Weber

Step 2. Use a "local" login account

"Use a local login account, not your Windows account, to log in to your machine," says Cyran Byrne, head of Adzchen's platform operations. Although Windows 10 Home will default to your Windows account, which makes it easier to log in across all devices through an account, Byron says, "If you say your Hotmail credentials were compromised, your machine will be compromised as well."

Step 3. Enable Controlled Folder Access

Consider enabling Controlled Folder Access, Chris Doman, a security researcher for AT&T Alien Labs, says, "to limit the damage caused by ransomware. This is available in all editions of Windows 10."

Step 4. Turn on Windows Hello

"Launch Windows Hello," says Joe Morley, the software's future workplace consultant, "one of the simplest ways for small businesses to secure Windows 10 is to launch the Windows Hello feature." It enables users to unlock devices with face recognition and fingerprint readers, bypassing passwords that are more likely to be hacked or stolen. "Of course, the pins can still be kept for backup," Morley says, "but Windows provides a method for Hello logging that is not only faster but more secure" 

Step 5. Enable Windows Defender

"The Marketplace acts as an antivirus and is powered by Windows 10, which more than anyone else needs to know," says Cyran Byron, head of Adzchen's platform operations, "Enable Windows Defender." To enable a built-in firewall, it's best to block any unwanted interruptions. "If you run into problems because of firewall rules, block, block and then block," Byrne says. Enable Windows Defender Real-Time Security and set up virus and threat protection scanning. "If you download a malicious file anonymously," Byron said, "taking appropriate security measures can help remove it before your system is compromised and hackers take control."

Step 6. Don't use the admin account

"If you don't need it every day," set up individual user accounts and use them with administrative rights for your day-to-day needs, "says Ken Underhill. Architect Matt Aldridge, WebRoot's main solution, is to have an administrator account Ideal for you is that you "just browse new software He uses to install updates ", leaving a neutral user account for anything else." Obviously, make sure that both accounts use a unique and secure password, "Aldridge says. If installing software requires admin privileges, Say you don't have to switch accounts because if you want Windows 10 to proceed However, a box will pop up asking for the admin password. Simple and secure, as I prefer.

Step 7. Keep Windows 10 updated automatically

"Keep Windows 10 updated automatically," Joe Morley, a future workplace consultant at SoftwareONE, says, "Windows 10 is delivered ‘as-a-service’ so it updates continually." This may be a controversial suggestion to some, given the warnings that have flowed regarding the Windows Update Assistant and Windows updates borking things including Windows Defender on occasion. Yet I agree with Morley; your computer is far more secure with Windows updates applied than without them. Businesses should "deploy upgrades in test environments initially to ensure safety," David Higgins, technical director (EMEA) at CyberArk, says, "because it allows security teams to check and verify that patches are safe to roll out to the entire business." For everyone else, though, instant access to security fixes is the trump card of automatic updating.

Step 8. Backup

If things go wrong, backing up your data should be part of every security strategy. "Use the trusted cloud backup service to seamlessly backup your data and store an offline copy of your critical files locally," says Webroot architect Matt Aldridge. "You should also enable system recovery and enable those recovery points," created by successful Richard Henderson Beebe recently, "which is a suggestion that people usually ignore until it is done, but it is still recommended for older, home and office users. That applies. "" Hey Darsana says, "One pound per ounce is good.