authorization Archives

AppWizard

February 28, 2026

Centre’s SIM binding directive on app-based messaging platforms ‘unconstitutional’: Tech industry body BIF

The Broadband India Forum (BIF) has expressed legal concerns about the government's SIM binding mandate, stating it is "ultra vires the parent legislation" and "unconstitutional," based on a senior counsel's opinion. This opinion critiques the Telecommunications (Telecom Cyber Security) Amendment Rules, 2025, claiming they exceed the authority of the Telecommunications Act of 2023. The government's directive requires app-based communication services to maintain a link to a user's active SIM card, which BIF argues violates principles of due process and proportionality. BIF also highlights that the introduction of Telecommunication Identifier User Entities (TIUEs) alters the scope of telecom regulation improperly, potentially leading to legal conflicts with existing laws like the Information Technology Act. BIF concludes that the amendment rules represent an impermissible expansion of delegated authority under the Telecom Act, advocating for adherence to the statutory framework. The government's directive, aimed at addressing cyber security concerns, would change how users access messaging services in India.

BetaBeacon

February 18, 2026

Digital Extremes Delays Global Release of Warframe on Android

A critical authorization problem causing an endless login loop on various devices, primarily affecting Pixel smartphones and tablets, has led to the delay of the global release of Warframe on Android.

AppWizard

February 17, 2026

New Keenadu backdoor found in Android firmware, Google Play apps

A sophisticated Android malware named Keenadu has been discovered embedded in the firmware of various device brands, compromising all installed applications and granting unrestricted control over infected devices. It employs multiple distribution methods, including compromised firmware images delivered over-the-air, access via backdoors, embedding in system applications, modified applications from unofficial channels, and infiltration through apps on Google Play. As of February 2026, Keenadu has been confirmed on approximately 13,000 devices, primarily in Russia, Japan, Germany, Brazil, and the Netherlands. The firmware-integrated variant remains dormant if the device's language or timezone is associated with China and ceases to function without the Google Play Store and Play Services. While currently focused on ad fraud, Keenadu has extensive capabilities for data theft and risky actions on compromised devices. A variant embedded in system applications has limited functionality but elevated privileges to install apps without user notification. The malware has been detected in the firmware of Android tablets from various manufacturers, including the Alldocube iPlay 50 mini Pro. Kaspersky has detailed how Keenadu compromises the libandroid_runtime.so component, making it difficult to remove with standard Android OS tools. Users are advised to seek clean firmware versions or consider replacing compromised devices with products from trusted vendors.

Tech Optimizer

February 12, 2026

Postgres Powers Constructive’s Compile-Time Security For AI Databases – Open Source For You

Constructive has launched a commercial platform that enhances security for AI-generated backends by utilizing its open-source Postgres tooling, which has over 100 million npm downloads and operates in more than 10 million databases. The platform enforces security measures, such as Row-Level Security (RLS) policies, at the time of table creation to prevent misconfigurations. It integrates permissions directly into the database layer and supports deterministic migrations and CI/CD validation. The platform is currently in a commercial private beta phase, with enterprise access available through constructive.io.

AppWizard

February 12, 2026

Android 17 Beta 1: Major updates for adaptive apps, performance and media are imminent

Android 17 Beta 1 introduces several enhancements for Pixel smartphone users, starting from the Pixel 6. Key features include mandatory adaptive app width for foldables and tablets, support for the new h.266 video codec, optimized camera APIs for smoother third-party applications, and synchronized volume control. The update requires applications to implement dynamic width adjustments to utilize screen space effectively on larger devices, addressing issues with black bars. The camera APIs have been revamped to allow third-party apps to switch modes without reinitializing the camera session, improving performance. The beta version is available for all Pixel smartphones through the Pixel 10 series, with the final release expected in the second quarter of 2026. Additionally, the setup process for wearables and health devices has been streamlined, and various performance optimizations have been made to enhance stability and efficiency.

Tech Optimizer

February 12, 2026

Constructive unveils secure-by-default Postgres platform

Constructive has launched a Postgres platform focused on security, implementing Row-Level Security (RLS) policies at table creation to prevent vulnerabilities from application-side configurations. The platform targets back-end development teams, particularly those using AI-assisted tools, and aims to enforce permissions and maintain data integrity directly at the database level. Constructive's open-source developer tools have surpassed 100 million downloads, including SQL parsers and migration systems. The platform allows teams to select access models and generates tables with embedded access rules, reducing the need for manual RLS configurations. It features a migration strategy ensuring reproducible security guarantees and validates RLS within CI/CD pipelines through automated checks. The serverless execution layer supports functions in multiple languages while adhering to the same permission model. Constructive's parsing technology is used in various Postgres-related platforms, and the company has filed provisional patents for its security compiler that transforms schemas into secure configurations. Constructive reports its tools are operational across over 10 million databases and is currently in a commercial private beta for enterprise teams.

Tech Optimizer

February 11, 2026

Constructive Launches Secure-by-Default Postgres Platform for the Agentic Era

Constructive has launched a secure Postgres platform that incorporates Row-Level Security (RLS) at the time of table creation to enhance backend security. This platform aims to prevent misconfigurations that could lead to vulnerabilities. Constructive has also achieved over 100 million npm downloads for its open-source developer tools. The platform is designed to address the growing prominence of Postgres as a preferred database, especially in applications supporting OpenAI's infrastructure, which serves 800 million users monthly. The launch aligns with trends such as Postgres being the default database, the dual impact of AI-assisted development increasing both speed and risks, and the challenge of human oversight in software development. The platform establishes a trust layer for AI-generated backends, ensuring consistent policy enforcement and verifiable security measures. It operates beneath the application layer, utilizing abstract syntax trees to apply security deterministically. Constructive's tools are currently in use across over 10 million databases at companies like Supabase and Databricks, and the secure Postgres platform is available in commercial private beta.

AppWizard

January 15, 2026

APKPure Strengthens Multi-Layer Security Framework to Enhance Protection for Android App Downloads

APKPure has enhanced its multi-layer security framework to improve user protection against security threats. Each app submitted undergoes a thorough human review process, including developer identity verification and compliance checks. APKPure distributes only original APK files signed by verified developers, matching signatures to official releases. The platform conducts regular scans using VirusTotal and collaborates with developers to ensure authorized app distribution. APKPure regularly audits listed apps and responds quickly to security alerts or DMCA reports. It offers two platforms: APKPure Official for a comprehensive experience and APKPure Lite for optimized downloads. Both platforms share the same verified app library and security measures, supporting over 200 regions and 23 languages.

Tech Optimizer

January 14, 2026

Introducing PostgREST, a REST API for any PostgreSQL database written in Haskell

PostgREST is a web server developed in Haskell that converts PostgreSQL databases into RESTful APIs, offering a more efficient and standards-compliant alternative to manual CRUD programming. It achieves subsecond response times for up to 2000 requests per second, utilizing the Warp HTTP server and offloading tasks like JSON serialization and data validation to the database. Authentication is managed through JSON Web Tokens (JWT), with authorization based on database-defined roles. PostgREST avoids using Object Relational Mappers (ORMs) and encourages declarative constraints in databases to maintain data integrity. User feedback has been mostly positive, although some have expressed concerns about complexities in production environments.

Winsage

December 21, 2025

Windows emergency update fixes MSMQ faults after December patchday

Microsoft has released emergency updates to address malfunctions with Windows Message Queuing (MSMQ) that occurred after the December security updates. The issues affect several versions of Microsoft Windows, including Windows 10 and various editions of Windows Server up to Server 2019, posing a risk of application outages for users relying on MSMQ. The problem arose from changes to the MSMQ security model, which modified NTFS access rights to the C:WindowsSystem32MSMQstorage folder, stripping applications or services without administrative rights of necessary write permissions. The updates are identified by knowledgebase numbers: KB5074976 for Windows 10, KB5074975 for Windows Server 2019, and KB5074974 for Windows Server 2016, raising Windows 10 build numbers to 19044.6693 and 19045.6693. Initially, these updates were not available through the standard Windows update function and could only be accessed via the Windows update catalog. Microsoft has expanded the list of affected systems to include earlier versions of Windows 10 (21H2, 1809, and 1607) and Windows Server 2012 R2 and 2012. Users of these systems should verify the application of December updates and manually install the emergency updates if necessary.