command Archives

Tech Optimizer

June 20, 2026

PostgreSQL 18 on Amazon Aurora and Amazon RDS: Performance enhancements

PostgreSQL 18 addresses common performance challenges for users, including managing query performance across composite indexes, diagnosing memory spills in materialized Common Table Expressions (CTEs), and upgrading major versions without plan regressions. Key enhancements include skip scan optimization for multicolumn indexes, improved EXPLAIN functionality, and optimizer statistics that persist through major version upgrades. Skip scan optimization allows PostgreSQL to efficiently utilize multicolumn B-tree indexes even when leading columns are not specified in the WHERE clause, significantly improving query performance. The EXPLAIN command has been enhanced to include buffer statistics by default, providing deeper insights into query execution and resource usage. PostgreSQL 18 also introduces visibility into the storage of materialized nodes in query plans, indicating whether intermediate results were stored in memory or spilled to disk. A new metric, Index Searches, has been added to EXPLAIN ANALYZE output, indicating how many times the database traversed the index tree during query execution. Additionally, Self-Join Elimination (SJE) automatically detects and removes unnecessary inner joins of a table to itself, optimizing query performance. The autovacuum mechanism has been improved with the introduction of autovacuum_vacuum_max_threshold, which caps the number of dead tuples that can accumulate before autovacuum triggers a VACUUM, addressing issues with large tables. The vacuum_truncate parameter provides a server-wide control point to disable VACUUM’s file truncation behavior, reducing locking issues on busy systems. PostgreSQL 18 also separates the allocation of autovacuum worker slots from their usage, allowing for dynamic adjustments to autovacuum_max_workers without requiring a server restart. Finally, new columns in pg_stat_all_tables track cumulative time spent on maintenance operations, providing better insights into maintenance overhead for each table.

Tech Optimizer

June 20, 2026

How Five PostgreSQL Optimizations Sped Up Our Dashboard

The dashboard operates on a Django monolith with PostgreSQL and is transitioning to ClickHouse for denormalization. The initial p50 metric was 0.7 seconds, but the p95 was 8 seconds, which was reduced to 1 second. Observability tools were established to monitor performance, and slow HTTP requests were identified using OpenTelemetry traces. Optimization techniques included late joining, asynchronous counting, creating a PostgreSQL replica for read operations, and improving full-text search. Denormalization was explored to enhance filtering performance by creating composite indexes. The production stack was upgraded to PostgreSQL 18, which provided incremental performance improvements. The final p95 value achieved was 1 second, below the target of 3 seconds.

Winsage

June 19, 2026

Microsoft Announces New Insider Builds, a Bit of 26H2 News

Microsoft has released five new Windows Insider Preview builds and updates for Windows 11 version 26H2. Devices in the Experimental channel will soon update to version 26H2, which can be checked in Settings > System > About or using the winver command. Users in the Beta channel can switch to Experimental via Settings > Windows Update > Windows Insider Program, and can revert back to Beta without reinstalling Windows. PCs on Experimental for versions 24H2 or 25H2 will be upgraded to 26H2, with both versions currently supported. Snapdragon X2-based PCs running Windows 11 on Arm will remain on version 26H1 and will not receive an update to 26H2, but may have a future release potentially called Windows 12. The latest builds are: - Beta (25H2): Build 26220.8690, enhancing reliability of Start, Taskbar, Settings, and virtualization. - Experimental (24H2/25H2?): Build 26300.8697, updating to 26H2 with improvements to File Explorer Copy dialog in Dark mode and reliability enhancements. - Beta (26H1): Build 28020.2308, with minor bug fixes and improved HD Audio driver reliability. - Experimental (26H1): Build 28120.2315, offering similar improvements as the Beta update. - Experimental (Future Platforms, Including Canary 29600 series): Build 29613.1000, enhancing Settings > System > Sounds based on user feedback.

Tech Optimizer

June 19, 2026

Looking Ahead to Postgres 19

Postgres has introduced new functionalities, including UPDATE and DELETE FOR PORTION OF, enhancing temporal use cases. The expansion of RANDOM() temporal functions is attributed to Paul Ramsey and Greg Sabino Mullane. Version 19 includes performance improvements in the planner and executor components, with contributions from Tom Lane. Key enhancements include refinements in anti-joins and semi-joins, constant folding optimizations, incremental sorting with append paths, enhanced aggregate processing prior to joins, improved join selectivity computation, and more comprehensive function statistics. These changes allow Postgres to better understand query structures, reducing unnecessary processing. The visibility of memoization in EXPLAIN has improved, sort performance has benefited from radix sort, and foreign key constraint checks have become faster. The COPY FROM command can now utilize SIMD instructions. Postgres 19 offers a range of improvements for application developers, operators, performance enthusiasts, and those building on Postgres, including enhanced graph queries, refined SQL syntax, improved window functions, better upsert behavior, REPACK CONCURRENTLY, advancements in autovacuum, improved monitoring capabilities, and new hooks. The release is still in beta, providing an opportunity for testing applications, migration, extensions, execution plans, and maintenance workflows.

Winsage

June 19, 2026

Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2

Microsoft has identified a Windows-based cryptocurrency clipper campaign that has been active since February 2026. This campaign uses clipboard-intercepting malware with self-spreading capabilities and operates through the Tor network. The clipper malware employs Windows Script Host and ActiveX to launch a Tor proxy and connect to a hidden command-and-control server. It focuses on stealing clipboard data, particularly cryptocurrency wallet addresses, and can exfiltrate screenshots. The malware is distributed via malicious Windows Shortcut (LNK) files on USB drives, which activate a worm that checks for existing infections and fetches the payload from a remote server. The clipper monitors the clipboard every 500 milliseconds for sensitive information and can replace copied wallet addresses with those controlled by attackers. Microsoft recommends behavioral detections, disabling AutoRun for removable media, blocking LNK execution from drives, and monitoring clipboard-related activities as mitigations against this threat.

Winsage

June 19, 2026

Microsoft finally admits its default Windows 11 25H2, 24H2 action broke key legacy component

Microsoft released Patch Tuesday updates for Windows 11, specifically KB5094126 and KB5093998, along with dynamic updates KB5094149, KB5095971, and KB5094156. Two issues have been acknowledged: malfunctioning Office applications and complications with the Recycle Bin. In July 2025, Microsoft changed the default settings of Windows 11 to JScript9Legacy in versions 24H2 and later, continuing with version 25H2 in October 2025. This change aimed to enhance security by addressing vulnerabilities related to legacy scripting, particularly cross-site scripting (XSS). A support article details a compatibility issue arising from the transition from jscript9.dll to jscript9legacy.dll, which affects how JScript manages execution context. Functions and definitions established by one script are no longer accessible to subsequent scripts, leading to failures in legacy applications. To address this, Microsoft released the KB5077241 update, which requires manual activation of persistent JScript execution context through a Registry setting. The steps to implement this solution involve creating a feature control registry key and configuring a DWORD value for specific processes or all processes.

Tech Optimizer

June 19, 2026

How Cybersecurity Services Have Evolved Beyond Antivirus and Firewalls

Businesses traditionally relied on antivirus software and firewalls for cybersecurity, which were effective when threats were simpler and data was mostly stored on-site. However, the cybersecurity landscape has evolved, with cybercriminals employing advanced tactics that traditional methods cannot adequately address. Antivirus software is limited to detecting known threats, while modern malware can evade detection by altering its code or executing in memory. Firewalls also struggle when authorized users' credentials are compromised, allowing threats to infiltrate networks. Contemporary security strategies advocate for a multi-layered approach, incorporating tools like Endpoint Detection and Response (EDR), Multi-Factor Authentication (MFA), Zero Trust Architecture, Dark Web Monitoring, and Security Awareness Training. Compliance with regulatory standards is increasingly important, and cyber insurance providers now require businesses to demonstrate comprehensive security measures. Managed security providers are becoming essential for small and mid-sized businesses, offering expertise and resources to manage complex security tools and processes effectively. Organizations should assess their current security status and adopt a layered approach to address vulnerabilities, recognizing that traditional solutions alone are insufficient in today's threat landscape.

AppWizard

June 19, 2026

Rokarolla trojan uses screen overlays to hijack Android financial apps

A new banking trojan for Android, named Rokarolla, targets 217 applications, including banking and cryptocurrency platforms, to steal credentials and sensitive financial data. It operates via a command and control (C2) server and bypasses the Google Play Store by using phishing websites that mimic legitimate download portals. Users are tricked into downloading a dropper that installs the malware, which disguises itself as the Google Play Protect security tool to gain access to Android Accessibility Services. Rokarolla employs dynamic screen overlays to capture user input in targeted financial applications and can also impersonate the device's lock screen. Additionally, it uses a pseudo-VNC system to intermittently capture screenshots for data extraction and can modify clipboard contents to manipulate cryptocurrency transactions by replacing copied addresses with those controlled by attackers.

AppWizard

June 19, 2026

3 simple Android Auto Automations that helped me stop wasting time in my driveway

The user transitioned from CarPlay to Android Auto in their Ioniq 5 EV and has been exploring sideloading video and web browsing applications to enhance their long drive experience. They have faced issues with Google's Automations since the launch of Gemini, with many not functioning properly and difficulties in creating custom Automations. Despite these challenges, they found value in using Automations for tasks like closing their garage door upon entering the vehicle and modifying stock Automations to manage smart lights efficiently. They also highlighted the effectiveness of Google's stock Good Morning routine, which provides weather updates, jokes, calendar recaps, and news summaries upon command.

Winsage

June 18, 2026

I discovered a dead‑simple way to remember Windows 11 shortcuts, and it changed how I use the OS

The Microsoft team behind PowerToys has released an updated Shortcut Guide in version 0.100 for Windows 11, which now appears as a context-sensitive flyout instead of a static reference page. This guide provides relevant keyboard shortcuts based on the application currently in use, improving user efficiency and learning. Users can access the Shortcut Guide by installing PowerToys and can customize its settings, including color theme and activation shortcut. The guide displays shortcuts for various applications and includes a list of Windows 11 and PowerToys shortcuts when no applications are focused. Developers can integrate their apps into the Shortcut Guide as well.