[German]A security researcher has found a 0-day vulnerability in Windows Installer that allows a local attacker to gain administrative privileges. The 'Windows Installer Elevation of Privilege' vulnerability CVE-2021-41379 has been patched in November 2021. But there is a workaround, the patch is ineffective. All Windows versions are affected, including Windows 10, that brand new Windows 11, and all Windows Server versions.
[German]This is a heavy stroke for many people with web presences. The US hoster GoDaddy has become a victim of a cyberattack. The attackers managed to gain access to the Managed WordPress hosting environment of this provider.
[German]NAS system vendor QNAP has released security updates for its firmware. In addition, an app is disabled for security reasons, because remote attackers can inject code into the firmware of the NAS storage. It seems that there is no security update for this vulnerability yet and the app has been disabled. Additionally, it seems that users are reporting issues after upgrading to QTS 5.0. Here is a collective post on these issues.
[German]Last week Friday, November 19, 2021 there seems to have been a cyber attack on the Danish wind turbine manufacturer Vestas. The company had to shut down its IT systems as a result and is currently trying to bring IT back up.
[German]Microsoft released the Windows 10 November 2021 Update (21H2) last week (see Windows 10 November 2021 Update (21H2) released). Now, as of November 19, 2021, they have also updated the Windows administrative templates to cover Windows 10 version 21H2.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Banking Trojan Mekotio returns in Latin AmericaCheck Point reports that the sophisticated banking Trojan Mekotio has returned in Latin America. In July this year, Spanish police had caught 16 suspects for money laundering related to the malware. Now the malware is attacking Spanish-speaking countries. The originator of the new version seems to be a Brazilian criminal gang, according to Check Point. I'm surprised, since Portuguese is spoken in Brazil, not Spanish. Anyway, Check Point already blocked over 100 attacks.
[German]Short addendum from this week. Microsoft has issued a security warning for November 16, 2021. It states that the Windows 10 Update Assistant Elevation of Privilege has security vulnerabilities. Specifically, it is about two vulnerabilities CVE-2021-42297 and CVE-2021-43211. In addition, there were some update revisions to vulnerabilities in Excel, etc.
[German]Question for people who use Acronis True Image (ATI) for backup. A blog reader pointed out a recurring problem with ATI to me back in late September 2021. The software seems to again forget or automatically change settings that the user has made. I am interested to know if there were or still are more people affected. Here is a summary of the facts.
[German]On October 4, 2021, there was a worldwide, six-hour IT outage at the U.S. company Facebook. What many users didn't have on their radar: The outage showed the dependencies many users and businesses have on Facebook identity management. Here's some information about it.
Microsoft introduced its first Windows with version number 1.0 on November 20, 1985. I didn't really notice the event at that time. And I won't tell you the hardware requirements at that time, because I don't want to bring tears into anyone's eyes. 
MVP:
2013 – 2016
WIMVP:
2017 – 2020
