caution Archives

Winsage

June 7, 2025

Windows Central Podcast: Is Windows in trouble?

This week’s episode of the Windows Central Podcast features hosts Daniel Rubino and Zac Bowden discussing the performance of Windows 11 on gaming handhelds and the challenges Microsoft faces due to setbacks with Windows Core OS and Windows CorePC. They also examine the latest designs of the Windows 11 Start menu and discuss the capabilities of Bing Video Creator, highlighting the impact of artificial intelligence on content creation.

Winsage

June 6, 2025

I don’t trust Windows Update anymore, and you shouldn’t either

Windows Update is essential for Windows 11, providing security patches, enhancements, and new features. Updates are released monthly on Patch Tuesday and are mandatory, with users facing automatic downloads and prompts for restarts. Recent updates have caused significant issues like boot failures, indicating a trend where updates introduce new problems. Users have limited control over updates, with only brief postponements allowed. Despite these challenges, updates are crucial for security and user experience. Users can pause updates to avoid immediate issues, and there is hope for improved testing protocols from Microsoft.

AppWizard

June 5, 2025

Roguelike clean ’em up game Scrubbin’ Trubble announced for PC

Odd Object, a new studio led by Stevie Hryciw and Tyriq Plummer, is developing a game called Scrubbin’ Trubble, set to release on PC via Steam in 2025. It is a "roguelike clean ’em up" game that combines cleaning and combat, allowing solo or cooperative play for up to four players. Players can choose from six RPG-inspired classes, including Bubbaladin, Bleacher, and Washbuckler, each with unique abilities. The game features randomized levels called The House, where players face various enemies and must defeat one of the Four Filths of the Apocalypse to progress. Key features include character upgrades, pun-themed enemies, and specialized equipment like the "Wiper Rifle" and "Splash Bang." The game is designed for both short and long gaming sessions.

Tech Optimizer

June 4, 2025

Migrate Google Cloud SQL for PostgreSQL to Amazon RDS and Amazon Aurora using pglogical

PostgreSQL is a popular open-source relational database used by enterprise developers and startups, enabling rapid prototyping and supporting mission-critical applications. Amazon RDS for PostgreSQL and Amazon Aurora PostgreSQL-Compatible Edition facilitate easy setup, operation, and scaling of PostgreSQL deployments in the AWS Cloud, automating administrative tasks like software installation, storage management, and backups. The pglogical extension, compatible with PostgreSQL versions 9.4 and higher, allows for asynchronous replication and is supported on RDS for PostgreSQL and Aurora PostgreSQL from version 12. It uses a publisher/subscriber model for logical streaming replication. To migrate a PostgreSQL database from Google Cloud SQL to RDS for PostgreSQL or Aurora PostgreSQL, users must configure the primary database in Cloud SQL, create a PostgreSQL user with replication privileges, enable logical replication parameters, and create the pglogical extension. The RDS instance also requires a special user for replication, enabling logical replication parameters and creating the pglogical extension. Known limitations of pglogical include the inability to replicate primary key changes directly, the need to manually transfer extensions, and the lack of support for materialized views and large objects. Workarounds involve using surrogate keys for primary keys, manually creating extensions, and converting large objects to bytea columns or storing them in Amazon S3. DDL statements are not automatically replicated, but can be queued using the pglogical.replicate_ddl_command function.

Winsage

June 4, 2025

KDE appeals to Windows 10 ‘exiles’

KDE has launched a campaign called "KDE for Windows 10 Exiles" in response to the end of support for Windows 10, which will occur on October 14. The campaign warns users that while Windows 10 will still function after this date, the lack of updates will lead to performance and security declines, increasing risks of hacking. Users face a choice between switching to the Long Term Servicing Channel, paying for extended security updates, or upgrading to Windows 11, which many are reluctant to do due to various reasons, including corporate policies and hardware incompatibility. KDE advocates for transitioning to Linux, specifically its Plasma Desktop environment, emphasizing its user-friendliness and visual appeal. While installing Linux has become easier, KDE advises users to seek help from Linux enthusiasts for a smooth transition. Once installed, KDE claims users will experience fewer data collection issues and no viruses, although users must remain vigilant against Linux malware. It is important to note that while support for many versions of Windows 10 ends on October 14, Microsoft 365 applications on Windows 10 will continue to receive security updates until 2028.

AppWizard

June 4, 2025

Massive Sonic Racing CrossWorlds Leak Reveals TMNT, SpongeBob, Avatar, and Minecraft Crossovers With Full Gameplay Footage

A leak regarding Sonic Racing: CrossWorlds has revealed crossover content featuring franchises such as Teenage Mutant Ninja Turtles (TMNT), Avatar: The Last Airbender, SpongeBob SquarePants, and Minecraft. The TMNT content includes a "Pizza Van" in four color variants and a themed race track set in New York City. Avatar content features Aang on a hoverboard and a "Bending Gates" mechanic for elemental powers. Minecraft is represented with a character selection menu hinting at a Minecraft-style character and themed vehicles. SpongeBob SquarePants will also be a playable racer with a unique vehicle and track. The leaks confirm the presence of TMNT, Avatar, and Minecraft, with potential for more franchises to be announced. Sonic Racing: CrossWorlds is expected to launch later this year.

AppWizard

June 4, 2025

‘In a very interesting way, it actually reduces the work’: Destiny 2’s director explains why reinventing the wheel with The Edge of Fate was actually the easier option

Destiny is set to release a new expansion titled The Edge of Fate on July 15, following the success of The Final Shape. The expansion aims to revitalize player engagement and introduce innovative gameplay mechanics, including an expanded buildcraft space and a new gear tiering system for armor and weapons. Bungie is working on enhancing Darkness subclasses and introducing Solo Ops for single-player experiences. The developers emphasize balancing challenge and reward, ensuring that players earn rewards through meaningful challenges. A new World Tier system will apply to the Kepler destination, allowing casual players to navigate the campaign at their own pace. Bungie is cautious about introducing a rarity tier above exotic items to maintain a balanced loot system. The team is also considering the return of class items from the original Destiny.

Tech Optimizer

June 3, 2025

Misspell one word and you’re infected: New malware campaign fools developers on both Windows and Linux

Cybersecurity experts have highlighted the risks of typosquatting, where developers accidentally download malicious packages due to typographical errors. A report from Checkmarx reveals that attackers exploit this trust by creating counterfeit packages that can grant unauthorized access to systems. Malicious packages have been found in the Python Package Index (PyPI) and can enable remote control, posing serious threats to system integrity. Attackers employ a cross-platform strategy, mixing names from different programming environments to target unsuspecting users. On Windows, malware can create scheduled tasks and disable antivirus protections, while on Linux, certain packages facilitate encrypted reverse shells for data exfiltration. Although the malicious packages have been removed, the threat remains, prompting developers to verify package sources and spellings. Checkmarx recommends organizations conduct audits of deployed packages and scrutinize application code to enhance security.

AppWizard

June 3, 2025

This Android loophole could have let your apps spy on your web browsing

Meta and Yandex have exploited a loophole in the Android operating system, allowing them to link web browsing data with app identities, bypassing privacy measures like incognito mode. This was revealed by researchers from the Local Mess project, who found that tracking scripts (Meta Pixel and Yandex Metrica) embedded in millions of websites transmit data from web browsers to apps such as Facebook, Instagram, and Yandex Maps through local network connections. Meta began using this technique in late 2024, while Yandex has been doing so since 2017. The loophole allows browser data to be sent to localhost, enabling apps to access it without user notification. In response, Meta has paused the feature and is working with Google to address the issue, which Google acknowledges violates Play Store policies. Some browsers are blocking this tracking, but researchers warn that solutions may be temporary without stricter restrictions on app access to local ports. The study indicates that most sites using these trackers start data collection immediately upon visiting, often before consent is requested. To prevent this tracking, users are advised to uninstall the affected applications.

AppWizard

June 3, 2025

Meta and Yandex are de-anonymizing Android users’ web browsing identifiers

Recent developments in browser technology have raised concerns about user privacy and data tracking by companies like Meta and Yandex. In response, several Android browsers are enhancing user privacy by blocking abusive JavaScript linked to web trackers. DuckDuckGo has implemented measures to block domains and IP addresses associated with trackers, preventing the transmission of identifiers to Meta and restricting access to Yandex Metrica. Following feedback, DuckDuckGo's developers updated their blacklist to include missing addresses. The Brave browser uses extensive blocklists to prevent identifier sharing and blocks requests to localhost without user consent. Vivaldi forwards identifiers to local Android ports by default but allows users to adjust settings to block trackers. Researchers warn that these solutions may not be foolproof and emphasize the ongoing challenge of maintaining effective blocklists. Chrome and most other Chromium-based browsers execute JavaScript as intended by Meta and Yandex, while Firefox has faced challenges with SDP munging and has not yet announced plans to address this behavior.