Privacy and Security Enable or Disable Microsoft Defender SmartScreen Phishing Protection Windows 11


  • Staff
Windows_Security_banner.png

This tutorial will show you how to turn on or off Microsoft Defender SmartScreen Phishing protection in Windows 11.

Microsoft Defender SmartScreen protects against phishing or malware websites and applications, and the downloading of potentially malicious files.

Starting with Windows 11 build 22593, Microsoft is introducing two powerful new features that strike against the most common cyberattack techniques: phishing and targeted malware. New in Windows 11 is enhanced phishing detection and protection built into Windows with Microsoft Defender SmartScreen. This new feature will help protect users from phishing attacks by identifying and alerting users when they are entering their Microsoft credentials into a malicious application or hacked website. Smart App Control uses code signing alongside Microsoft’s powerful artificial intelligence models to ensure that only trusted applications are run, blocking one of the largest attack vectors on Windows by-default.

References:
learn.microsoft.com

Enhanced Phishing Protection in Microsoft Defender SmartScreen - Windows Security

Learn how Enhanced Phishing Protection for Microsoft Defender SmartScreen helps protect Microsoft school or work passwords against phishing and unsafe usage on sites and apps.
learn.microsoft.com

Protect your Microsoft password from being phished - Microsoft Support

support.microsoft.com support.microsoft.com
blogs.windows.com

Windows powers the future of hybrid work

Over the past two years, work has changed dramatically. Most employees want flexible and remote options to stay. Cyberthreats are at an all-time high. And with the move to hybrid work, IT managers are challenged to empower their workforces with new t
blogs.windows.com blogs.windows.com
www.microsoft.com

New security features for Windows 11 will help protect hybrid work | Microsoft Security Blog

Attackers haven’t wasted any time capitalizing on the rapid move to hybrid work. Every day cyber criminals and nation states alike have improved their targeting, speed and accuracy as the world adapted to working outside the office.
www.microsoft.com www.microsoft.com
techcommunity.microsoft.com

Windows 11, version 22H2 Security baseline

Microsoft is pleased to announce the release of the security baseline package for Windows 11, version 22H2!
techcommunity.microsoft.com
techcommunity.microsoft.com

Protect passwords with enhanced phishing protection

Attackers don’t break in, they log in. Learn how enhanced phishing protection in SmartScreen keeps passwords safer.
techcommunity.microsoft.com

Starting with Windows 11 version 22H2 KB5030310 Build 22621.2361, Enhanced Phishing Protection in Microsoft Defender SmartScreen helps protect Microsoft school or work passwords against phishing and unsafe usage on sites and apps. Microsoft is trying out a change starting with this build where users who have enabled warning options for Windows Security under App & browser control > Reputation-based protection > Phishing protection will see a UI warning on unsafe password copy and paste, just as they currently see when they type in their password.


You must be signed in as an administrator to turn on or off Microsoft Defender SmartScreen Phishing protection.



Contents

  • Option One: Turn On or Off Microsoft Defender SmartScreen Phishing Protection in Settings
  • Option Two: Enable or Disable Microsoft Defender SmartScreen Phishing Protection in Local Group Policy Editor
  • Option Three: Enable or Disable Microsoft Defender SmartScreen Phishing Protection using REG file


EXAMPLE: Phishing protection warning

Microsoft_Defender_SmartScreen_Phising_protection_warning.png
Notify_Password_Reuse.png
Notify_Unsafe_App.png





Option One

Turn On or Off Microsoft Defender SmartScreen Phishing Protection in Settings


1 Open Windows Security.

2 Click/tap on App & browser control. (see screenshot below)

Microsoft_Defender_SmartScreen_Phising_protection-1.png

3 Click/tap on the Reputation-based protection settings link. (see screenshot below)

Microsoft_Defender_SmartScreen_Phising_protection-2.png

4 Turn On or Off Phishing protection for what you want. (see screenshots below step 6)

5 Click/tap on Yes when prompted by UAC to approve.

6 If you turned on Phishing protection, you can check (on) or uncheck (off) the following for the warnings you want: (see screenshots below)

You will need to click/tap on Yes when prompted by UAC to approve each item below.


  • Warn me about malicious applications and websites
  • Warn me about password reuse
  • Warn me about insecure password storage
Microsoft_Defender_SmartScreen_Phising_protection-3.png
Microsoft_Defender_SmartScreen_Phising_protection-4.png

7 You can now close Windows Security if you like.




Option Two

Enable or Disable Microsoft Defender SmartScreen Phishing Protection in Local Group Policy Editor


The Local Group Policy Editor is only available in the Windows 11 Pro, Enterprise, and Education editions.

All editions can use Option Three to configure the same policy.


1 Open the Local Group Policy Editor (gpedit.msc).

2 Navigate to the policy location below in the left pane of the Local Group Policy Editor. (see screenshot below)

Computer Configuration > Administrative Templates > Windows Components > Windows Defender SmartScreen > Enhanced Phishing Protection

Enhanced_Phishing_Protection_gpedit-1.png

3 Do step 4 (Notify Malicious), step 5 (Notify Password Reuse), step 6 (Notify Unsafe App), and/or step 7 (Service Enabled) below for which policies you want to configure.

4 Enable or Disable "Warn me about malicious apps and sites"

A) In the right pane of Enhanced Phishing Protection in the Local Group Policy Editor, double click/tap on the Notify Malicious policy to edit it. (see screenshot below step 2)​

B) Select (dot) Not Configured (default), Enabled, or Disabled for what you want, and click/tap on OK.​

Enabled or Disabled will override Option One.


C) Go to step 8.​

Enhanced_Phishing_Protection_gpedit-3.png

5 Enable or Disable "Warn me about password reuse"

A) In the right pane of Enhanced Phishing Protection in the Local Group Policy Editor, double click/tap on the Notify Password Reuse policy to edit it. (see screenshot below step 2)​

B) Select (dot) Not Configured (default), Enabled, or Disabled for what you want, and click/tap on OK.​

Enabled or Disabled will override Option One.


C) Go to step 8.​

Enhanced_Phishing_Protection_gpedit-4.png

6 Enable or Disable "Warn me about unsafe password storage"

A) In the right pane of Enhanced Phishing Protection in the Local Group Policy Editor, double click/tap on the Notify Unsafe App policy to edit it. (see screenshot below step 2)​

B) Select (dot) Not Configured (default), Enabled, or Disabled for what you want, and click/tap on OK.​

Enabled or Disabled will override Option One.


C) Go to step 8.​

Enhanced_Phishing_Protection_gpedit-5.png

7 Enable or Disable Phishing Protection

A) In the right pane of Enhanced Phishing Protection in the Local Group Policy Editor, double click/tap on the Service Enabled policy to edit it. (see screenshot below step 2)​

B) Select (dot) Not Configured (default), Enabled, or Disabled for what you want, and click/tap on OK.​

Enabled or Disabled will override Option One.


C) Go to step 8.​

Enhanced_Phishing_Protection_gpedit-2.png

8 When finished, you can close the Local Group Policy Editor if you like.




Option Three

Enable or Disable Microsoft Defender SmartScreen Phishing Protection using REG file


1 Do step 2 (Notify Malicious), step 3 (Notify Password Reuse), step 4 (Notify Unsafe App), or step 5 (Service Enabled) below for which policies you want to configure.


 2. Enable or Disable "Warn me about malicious apps and sites"

Enable or Disable will override Option One.


A) Click/tap on the Download button below to download the .reg file you want below, and go to step 6 below.​

Default_user_choice_notify_malicious.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyMalicious"=-

OR​

Force_enable_notify_malicious.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyMalicious"=dword:00000001

OR​

Force_disable_notify_malicious.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyMalicious"=dword:00000000


 3. Enable or Disable "Warn me about password reuse"

Enable or Disable will override Option One.


A) Click/tap on the Download button below to download the .reg file you want below, and go to step 6 below.​

Default_user_choice_notify_password_reuse.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyPasswordReuse"=-

OR​

Force_enable_notify_password_reuse.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyPasswordReuse"=dword:00000001

OR​

Force_disable_notify_password_reuse.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyPasswordReuse"=dword:00000000


 4. Enable or Disable "Warn me about unsafe password storage"

Enable or Disable will override Option One.


A) Click/tap on the Download button below to download the .reg file you want below, and go to step 6 below.​

Default_user_choice_notify_unsafe.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyUnsafeApp"=-

OR​

Force_enable_notify_unsafe.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyUnsafeApp"=dword:00000001

OR​

Force_disable_notify_unsafe.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"NotifyUnsafeApp"=dword:00000000


 5. Enable or Disable "Enable or Disable Phishing Protection"

Enable or Disable will override Option One.


A) Click/tap on the Download button below to download the .reg file you want below, and go to step 6 below.​

Default_user_choice_enhanced_phishing_protection.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"ServiceEnabled"=-

OR​

Force_enable_enhanced_phishing_protection.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"ServiceEnabled"=dword:00000001

OR​

Force_disable_enhanced_phishing_protection.reg


(Contents of REG file for reference)
Code: 
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components]
"ServiceEnabled"=dword:00000000

6 Save the .reg file to your desktop.

7 Double click/tap on the downloaded .reg file to merge it.

8 When prompted, click/tap on Run, Yes (UAC), Yes, and OK to approve the merge.

9 You can now delete the downloaded .reg file(s) if you like.


That's it,
Shawn Brink


Related Tutorials

 

Attachments

  • Windows_Security.png
    Windows_Security.png
    6 KB · Views: 84
  • Force_disable_notify_malicious.reg
    688 bytes · Views: 129
  • Default_user_choice_notify_malicious.reg
    662 bytes · Views: 151
  • Force_enable_notify_malicious.reg
    688 bytes · Views: 141
  • Default_user_choice_notify_password_reuse.reg
    670 bytes · Views: 136
  • Force_disable_notify_password_reuse.reg
    696 bytes · Views: 160
  • Force_enable_notify_password_reuse.reg
    696 bytes · Views: 133
  • Default_user_choice_notify_unsafe.reg
    666 bytes · Views: 121
  • Force_enable_notify_unsafe.reg
    692 bytes · Views: 118
  • Force_disable_notify_unsafe.reg
    692 bytes · Views: 141
  • Default_user_choice_enhanced_phishing_protection.reg
    664 bytes · Views: 132
  • Force_disable_enhanced_phishing_protection.reg
    690 bytes · Views: 142
  • Force_enable_enhanced_phishing_protection.reg
    690 bytes · Views: 158
Last edited:
Click to expand...
Tutorial updated to add options 2 and 3 for group policy options. :-)
 

My Computers

System One System Two

  • OS
    Windows 11 Pro for Workstations
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom self build
    CPU
    Intel i7-8700K 5 GHz
    Motherboard
    ASUS ROG Maximus XI Formula Z390
    Memory
    64 GB (4x16GB) G.SKILL TridentZ RGB DDR4 3600 MHz (F4-3600C18D-32GTZR)
    Graphics Card(s)
    ASUS ROG-STRIX-GTX1080TI-O11G-GAMING (11GB GDDR5X)
    Sound Card
    Integrated Digital Audio (S/PDIF)
    Monitor(s) Displays
    2 x Samsung Odyssey G75 27"
    Screen Resolution
    2560x1440
    Hard Drives
    1TB Samsung 990 PRO M.2,
    4TB Samsung 990 PRO M.2,
    8TB WD MyCloudEX2Ultra NAS
    PSU
    Seasonic Prime Titanium 850W
    Case
    Thermaltake Core P3 wall mounted
    Cooling
    Corsair Hydro H115i
    Keyboard
    Logitech wireless K800
    Mouse
    Logitech MX Master 3
    Internet Speed
    1 Gbps Download and 35 Mbps Upload
    Browser
    Google Chrome
    Antivirus
    Microsoft Defender and Malwarebytes Premium
    Other Info
    Logitech Z625 speaker system,
    Logitech BRIO 4K Pro webcam,
    HP Color LaserJet Pro MFP M477fdn,
    APC SMART-UPS RT 1000 XL - SURT1000XLI,
    Galaxy S23 Plus phone
  • Operating System
    Windows 11 Pro for Workstations
    Computer type
    Laptop
    Manufacturer/Model
    HP Spectre x360 2in1
    CPU
    i7-1065G7 3.9 GHz
    Memory
    16 GB LPDDR4-3200
    Graphics card(s)
    Intel Iris Plus
    Sound Card
    Intel SST
    Monitor(s) Displays
    13.3" 4K UWVA AMOLED multitouch
    Screen Resolution
    3840 x 2160
    Hard Drives
    512 GB PCIe NVMe M.2 SSD
    Browser
    Google Chrome
    Antivirus
    Windows Defender and Malwarebytes Premium
Hi. I'm having troubles activating Phishing Protection.
So, I was just checking that all important things are on in "App & browser control". I found out Phishing protection function was turned off.

1696006012264.png
I clicked on the toggle, and it seemed like Phishing protection started working - checkboxes and toggle became blue.
But once I restarted my PC, I found out Phishing protection for some unknown reason was turned off. As an experiment, I tried enabling it again and restarting - the result was same, it got disabled.
Since I have Home version of Windows 11, I used the .reg files from this article to activate all functions. I restarted the PC, and none of the functions got to work. Once I clicked on the toggle, I got it "turned on" with "This setting is being managed..." precaution:

1696006370107.png
I, then, restarted my PC once again, and the function once again got disabled.
I tried the "Repair" button in Settings>Apps>Installed apps>Windows Security and redid all the steps, but the problem continued to persist.
I also tried the sfc /scannow and DISM scan,check health commands - no errors.
Please help me to find the solution for this problem.
 

My Computer

System One

  • OS
    Windows 11
This must've been broken with the latest September update. I updated my second PC (Phishing Protection worked correctly on it with August updates) and the function got disabled.
 

My Computer

System One

  • OS
    Windows 11
You must log in or register to reply here.

Similar Windows 11 Tutorials

  • Article
Browsers and Mail Enable or Disable Auto Discard Sleeping Tabs in Microsoft Edge
Replies
0
Views
596
Brink
Brink
  • Article
Network and Internet Enable or Disable Require SMB Client Encryption in Windows 11
Replies
0
Views
1K
Brink
Brink
  • Article
Phone Enable or Disable Phone Link Suggestions in Windows 11
Replies
2
Views
514
Brink
Brink
  • Article
Personalization Enable or Disable Windows Spotlight on Desktop Background in Windows 11
Replies
0
Views
3K
Brink
Brink
  • Article
Gaming Enable or Disable Game Recording for Captures in Windows 11
Replies
0
Views
2K
Brink
Brink
  • Article
Accounts Enable or Disable Password Sign-in Option for Local Accounts in Windows 11
Replies
0
Views
1K
Brink
Brink
  • Article
Accounts Enable or Disable Fingerprint Sign-in Option in Windows 11
Replies
0
Views
1K
Brink
Brink

Latest Support Threads

Latest Tutorials

Back
Top Bottom