Patch up, people.

Today is Microsoft's November 2021 Patch Tuesday, and with it comes fixes for six zero-day vulnerabilities and a total of 55 flaws. The actively exploited vulnerabilities are for Microsoft Exchange and Excel, with the Exchange zero-day used as part of the Tianfu hacking contest.

Microsoft has fixed 55 vulnerabilities with today's update, with six classified as Critical and 49 as Important. The number of each type of vulnerability is listed below:

• 20 Elevation of Privilege vulnerabilities
• 2 Security Feature Bypass vulnerabilities
• 15 Remote Code Execution vulnerabilities
• 10 Information Disclosure vulnerabilities
• 3 Denial of Service vulnerabilities
• 4 Spoofing vulnerabilities

For information about the non-security Windows updates, you can read about today's Windows 10 KB5007186 & KB5007189 cumulative updates and the Windows 11 KB5007215 cumulative update.

https://www.bleepingcomputer.com/news/microsoft/microsoft-november-2021-patch-tuesday-fixes-6-zero-days-55-flaws/ 

Indeed Hugh. Windows 10 is promised to continue being supported until 2025.

SA

Just for clarification -- this does NOT mean you have to go to WINDOWS 11. You can stay on WINDOWS 10 at least for now.

Just a follow-on note to the thread. The relationship is regarding patching. Those of you who are still clinging to Windows 10 version 2004 should be aware of, if you aren't already, that version will enter "end of service" on December 14, 2021. What does this mean? Microsoft stops providing technical support, quality updates, and security fixes for newly discovered vulnerabilities.  You will be using an unsupported OS at your own risk. No antivirus or malware company will be able to protect you against exploits in the manner one would expect if a fully patched OS were used. As Krusty13 advises, patch up and upgrade. Make your backups as well.

SA