WiseCleaner Think Tank
Encounter difficult computer problems?
All about maintenance and optimization of your Windows System.
Jul 24, 2025
Phishing attacks continue to evolve, targeting both personal and corporate data. To combat this, Microsoft Defender offers Enhanced Phishing Protection—a proactive layer that monitors credential theft attempts in real time. Here’s how to enable it in Windows 11.
Phishing remains one of the most common and dangerous cyber threats today, aiming to trick users into revealing sensitive information such as passwords, credit card details, or personal data. To help bolster user security, Microsoft introduced Enhanced Phishing Protection as part of Microsoft Defender SmartScreen in Windows 11. This advanced feature proactively monitors your activities—especially when you enter passwords into websites and applications—to detect suspicious behavior and warn you if you may be falling prey to a known phishing scheme or attempting to reuse work or school passwords on unsecured sites.
Real-Time Phishing Detection: Scans for unsafe sites and suspicious activities as you browse or use apps.
Password Reuse Detection: Warns you if you try to reuse your Microsoft, work, or school passwords on other applications or services.
Credential Storage Alerts: Notifies you if you attempt to save passwords in insecure locations or programs.
Seamless Integration with Microsoft Defender: Works alongside other Windows security features for multilayered protection.
Enabling Enhanced Phishing Protection means getting timely, actionable alerts to help prevent credential theft and sensitive data leaks.
You can enable this feature using any of the following methods:
The easiest way to enable Enhanced Phishing Protection is through the Windows Security. This method is accessible to all Windows 11 editions and doesn't require administrative privileges or complex configuration.
Go to Start > Settings > Privacy & security > Windows Security.
In Windows Security, select App & browser control on the left sidebar. Click on Reputation-based protection settings.
Scroll down to Phishing protection and turn on the options:
Warn me about malicious apps and sites
Warn me about password reuse
Warn me about unsafe password storage
Adjust the options according to your desired level of protection.
For professional or enterprise environments, the Local Group Policy Editor offers granular control over security features.
Press Win + R, type gpedit.msc, and press Enter.
Navigate to Computer Configuration > Administrative Templates > Windows Components > Windows Defender SmartScreen > Enhanced Phishing Protection.
Enable the relevant options depending on your desired level of protection:
Automatic Data Collection
Notify Malicious
Notify Password Reuse
Notify Unsafe App
Service Enabled
Double-click each setting, choose Enabled, and then click the OK button.
If you're running Windows 11 Home, the Registry Editor provides a powerful alternative. Editing the registry can affect system stability. Back up your registry before proceeding.
Press Win + R, type regedit, and press Enter.
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WTDS\Components
If the WTDS\Components key does not exist, right-click and select New > Key to create them manually.
Add the following values from right-click on Components and select New > DWORD (32-bit) Value:
Enhanced Phishing Protection in Microsoft Defender is a valuable layer of defense that helps prevent credential compromise. Whether you're a casual user or managing multiple systems, enabling this feature can significantly reduce exposure to phishing attacks. Choose the method that best fits your needs—whether through the easy-to-access Windows Security interface or via Group Policy and Registry for more controlled environments.
