Windows Defender can block Petya & GoldenEye Ransomware on Windows 10

By: Madeleine Dean
3 minute read

A new wave of ransomware attacks starring Petya and GoldenEye Ransomware has affected thousands of computers worldwide. This attack comes only one month after the massive WannaCry attack.

Unfortunately, this time the creators of Petya and GoldenEye didn’t make the same mistake that WannaCry’s creators had done. The new ransomware features stronger encryption and a worm-like behavior. For this reason, many security specialists labelled Petya and GoldenEye as cyberattacks, rather than ransomware attempts.

Irrespective of the goal behind the recent ransomware wave, one thing is sure: victims cannot recover their files even if they pay the ransom. In other words, if your computer gets infected, avoid paying the ransom by all means. And most importantly, avoid getting infected in the first place.

READ ALSO: Prevent future ransomware attacks with this free tool

Windows Defender blocks Petya & GoldenEye Ransomware

If you want to keep your computer safe from Petya and GoldenEye, make sure that you’ve installed the latest definition updates for Windows Defender.

Windows Defender Advanced Threat Protection is perfectly capable of fully protecting your computer against Petya and GoldenEye attacks, keeping your files safe.

Microsoft explains that:

Windows Defender Advanced Threat Protection is a post-breach solution and offers by-design detections for this attack without need of any signature updates. Windows Defender ATP sensors constantly monitor and collect telemetry from the endpoints and offers machine-learning detections for common lateral movement techniques and tools used by this ransomware, including, for example, the execution of PsExec.exe with different filename, and the creation of the perfc.dat file in remote shares (UNC) paths.

To make sure that you’re running the latest Windows Defender version, you should force updates daily. Updating once a day gives you a good level of protection. At the same time, the antivirus won’t interfere with how you use your PC because you already run the latest definition updates.

Additional ways to protect your PC from ransomware

  • Upgrade to Windows 10 Creators Update: This OS version adds a series of extra-security layers against ransomware attacks. More specifically, Windows Defender uses cloud-based machine learning, deep neural networks, and other advanced automation technologies to verify suspicious files, and block threats instantly.
  • Use Windows 10 S: As a quick reminder, Windows 10 S only run apps from the Windows Store, further protecting users from ransomware.
  • Install the Windows security updates from March: Microsoft rolled out a series of important security updates in March, targeted specifically at protecting users against malware attacks. If you haven’t installed the respective updates yet, do so as soon as possible.
  • If you can’t install the March security updates right now, disable SMBv1 and add a rule on your router or firewall to block incoming SMB traffic on port 445.

As you can see, installing the latest Windows updates is essential to keeping your computer safe from ransomware attacks. If you haven’t checked for updates in quite a while, go to Settings > Update & Security > hit the ‘Check for updates’ button.


For various PC problems, we recommend this tool.

This software will repair common computer errors, protect you from file loss, malware, hardware failure and optimize your PC for maximum performance. Fix PC issues now in 3 easy steps:

  1. Download this PC Repair Tool rated "Excellent" on
  2. Click “Start Scan” to find Windows issues that could be causing PC problems.
  3. Click “Repair All” to fix all issues with Patended Technologies (requires upgrade).

Next up

Best Windows 10 antivirus software to use in 2018

By: Radu Tyrsina
7 minute read

Update – 2018 will soon come to an end and we already have a guide on what is the best antivirus you should get in […]

Continue Reading

These features are out for good with Windows 10 version 1809' By: Sovan Mandal
2 minute read

Microsoft is all set to launch its next big update, Windows 10 version 1809 in October. While that should be a nice piece of news […]

Continue Reading

Windows 10 18H2 builds no longer receive new features

By: Matthew Adams
3 minute read

The Windows 10 October 2018 Update (otherwise 18H2) rollout might now be two to three weeks away. For the last few months, new build previews […]

Continue Reading