If you don't want to go as far as implementing AppLocker as described in the preceding recipe, there is another method that you can consider.
We will look into how to protect your computers with more tools than System Center Endpoint Protection will give you. We will be looking at scenarios for the Enhanced Mitigation Experience Toolkit (EMET).
Another possibility that we can investigate is simply blocking certain file extensions that all known cryptolocker and ransomware programs use, such as
.zepto. Later in this chapter I will show you how you can achieve this.
First, Exploits need some explaining.
These are vulnerability holes in software installed on computers. Malware can slip through ...