How to Enable Phishing Protection in Windows 11

Make your passwords safer by turning on Windows 11’s built-in enhanced phishing protection.

Today, phishing attacks are among the most common cybersecurity threats. Cybercriminals attempt to use fake websites, unauthorized apps, or download links to steal users’ personal credentials such as passwords. Fortunately, Microsoft Defender SmartScreen provides Enhanced Phishing Protection, which is a feature built into the Windows 11 version 22H2 for both personal and business users. Enhanced Phishing Protection is designed to safeguard against password theft, prevent unsafe activities, and secure user credentials.

This guide will show how to activate Enhanced Phishing Protection within Windows Security and configure its settings to enhance protection against phishing scams.

Method 1: Set Up Phishing Protection with Microsoft Intune

Microsoft Intune is a cloud-based solution for managing organizational endpoints as it comprehensively controls the managed user’s access and apps on their devices. With policy enforcement automation, app management simplification, and security upgrades, IT administrators are able to enhance control over Windows device. Microsoft Intune integrates with Enhanced Phishing Protection in Windows 11 allowing IT administrator to remotely set and manage anti-phishing policy enforcement on managed devices.

Step 1: Go to Microsoft Intune admin center and navigate to Devices. Under the Manage section, select Configuration profiles.

Step 2: Click on New Policy, then click Create profile. Choose Windows 10 and Later as the platform and select Settings catalog as the profile type. Proceed to the next step.

Step 3: Click on New Policy, then click Create profile. Choose Windows 10 and Later as the platform and select Settings catalog as the profile type. Proceed to the next step.

Notify Malicious: Alert users when they enter their credentials on phishing sites or unauthorized apps.
Notify Password Reuse: Alerts users about reusing work passwords.
Notify Unsafe Storage: Prevent storing passwords in plaintext files.
Notify Unsafe App : warns users if they store their password in Notepad or Microsoft 365.
Service Enabled: Turns on phishing protection service.
Automatic data collection :This policy allows Enhanced Phishing Protection to collect additional information such as content displayed, sounds played, and application memory when users enter their work or school password into a suspicious website or app

Step 4: Review all configurations and click Create to deploy the policy.

Microsoft Intune deployment delivers consistent protection across all managed devices and, when you used the premium Microsoft Defender for Endpoint, It gives administrators insight into unsafe password usage.

Method 2: Set Up Phishing Protection via Local Group Policy Editor

The Local Group Policy Editor (gpedit.msc) is a built-in tool in Windows, primarily available in the Pro, Enterprise, and Education editions. It enables administrators to manage settings and configurations for individual computers or users.

Step 1: Press Win + R to open the Run box, type gpedit.msc, and hit Enter.

Step 2: Navigate to Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender SmartScreen > Enhanced Phishing Protection.

Step 3:Double-click each policy and set it to Enabled.

Service Enabled
Notify Malicious
Notify Password Reuse
Notify Unsafe App
Automatic Data Collection

Each policy setting includes a short description that helps system administrators understand the purpose of each setting and the effects of enabling, disabling, or leaving it unconfigured.

Step 4: Click “Apply,” then “OK.” Restart the system for the changes to take effect.

Method 3: Set Up Phishing Protection Via Registry Editor ( For Advanced user only)

The Registry Editor (regedit) is a tool in Windows that allows you to view and modify the Windows Registry—a hierarchical database that stores low-level settings for the operating system and applications. This method is intended for advanced users, and you should back up your device before making any changes.

Step 1:Press Win + R to open the Run dialog, type regedit, and hit Enter.

Step 2: Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer. If the System key doesn’t exist, right-click on Windows, select New > Key, and name it System. .

Step 3:Double-click each policy and set it to Enabled.

Service Enabled
Notify Malicious
Notify Password Reuse
Notify Unsafe App
Automatic Data Collection

Each policy setting includes a short description that helps system administrators understand the purpose of each setting and the effects of enabling, disabling, or leaving it unconfigured.

Step 4: Modify the following DWORD (32-bit) values, setting each to 1 to enable, 2 to block, or 0 to disable

EnableSmartScreen → Set to 1 (Enables SmartScreen).
NotifyMalicious → Set to 1 (Warns users about phishing sites).
NotifyPasswordReuse → Set to 1 (Alerts users about password reuse).
NotifyUnsafeStorage → Set to 1 (Prevents storing passwords in plaintext files).

Step 5: Close the Registry Editor and restart your computer for the changes to take effect.

Method 4: Configure Phishing Protection via Windows Security

Enhanced Phishing Protection can be easily activated directly through the Windows Security app, making it the simplest method for most users.

Step 1: Press Win + I on your keyboard to open setting and click on Privacy & security > Windows Security.

Step 2: Click Open Windows Security under the Windows Security section.

Step 3: Click on App & browser control. Under Reputation-based protection, click Reputation-based protection settings.

Step 4: Scroll down to Phishing protection and Toggle on the Phishing protection switch.

Make sure the following options are enabled for full protection:
✅ Warn me about malicious apps and sites
✅ Warn me about password reuse
✅ Warn me about unsafe password storage

Approve any User Account Control pops up to complte changes. Restart your device to ensure settings persist.

Method 5: Configure Phishing Protection Via .reg File

A .reg file is a Windows Registry file used to add, modify, or delete registry entries in the Windows operating system.

Step 1:Open Notepad and Copy and paste the following content:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System]
“EnableSmartScreen”=dword:00000001
“EnableEnhancedPhishingProtection”=dword:00000001
“NotifyPasswordReuse”=dword:00000002
“NotifyUnsafeApp”=dword:00000001
“NotifyMalicious”=dword:00000001

Step 2: Save it as phishing_protection.reg (make sure to select All Files as the file type).

Step 3: Right-click on the .reg file and select Merge. Approve the User Account Control (UAC) prompt. Click Yes to confirm adding the changes.

Step 4: Restart your computer to apply the new security settings.

This method provides a quick and efficient way to deploy phishing protection across multiple systems. Before applying, it is advisable to create a restore point or back up the registry.

Final Thought : Set Up Phishing Protection in Microsoft Security

Phishing protection is a powerful security and often overlooked feature that comes free with Windows 11. It integrates into Windows Security and powered by Microsoft Defender SmartScreen that offers real time protection against phishing websites, malicious apps, and unsafe password use without the need for third party applications.
If you enable few settings, you can automatically reduce your risk of falling victim to online scams, password theft, and identity fraud. This tool can be beneficial Whether you’re a beginner or a tech-savvy user .So turn on Windows phishing protection today and stay a step ahead of cyber threats.
Still confused or stuck about How to How to configure phishing protection on windows 11. Leave your questions in the comments or call me at +1– 844-405-0212. I am here to help!
Stay updated with more at www.365dayson.com !