default Archives

AppWizard

May 14, 2026

5 Android App Permissions You Should Never Allow

Users should be cautious when granting permissions to applications on Android devices, as extensive access can lead to security vulnerabilities. Apps with accessibility permissions can perform actions like hacking passwords and altering device settings without user consent. Overlay permissions allow apps to display content over others, which can be exploited by malicious apps to trick users into providing sensitive information. Installing apps from unknown sources poses risks to device security and privacy. Usage data access enables apps to monitor user activity, which can be sold to advertisers. Granting access to contacts and SMS can lead to privacy concerns, as this information can be exploited by malicious entities. Users are advised to regularly review and manage app permissions to mitigate potential threats.

Winsage

May 13, 2026

Disgruntled researcher releases two more Microsoft zero-days

An anonymous researcher known as Nightmare-Eclipse has revealed two new vulnerabilities affecting Windows systems, named YellowKey and GreenPlasma, shortly after Microsoft's latest Patch Tuesday update. YellowKey is a "BitLocker bypass" that allows attackers with physical access to gain unrestricted shell access to protected machines. Experts have expressed concerns about YellowKey's potential to transform laptop theft into a serious breach notification scenario, and suggested mitigations such as implementing a BitLocker PIN and a BIOS password lock. Nightmare-Eclipse has also hinted that YellowKey could function as a backdoor allegedly introduced by Microsoft, although this claim remains unsubstantiated. GreenPlasma is a privilege escalation flaw for which partial exploit code has been released, but it currently triggers a User Account Control (UAC) consent prompt, requiring attackers to invest time in weaponizing it. There is no known mitigation for GreenPlasma, making it crucial for organizations to patch their systems promptly once Microsoft addresses the issue. Nightmare-Eclipse has previously disclosed five zero-day vulnerabilities this year, including BlueHammer, and has characterized their actions as a response to a perceived violation of trust. The researcher has indicated the existence of a "dead man's switch," suggesting that more disclosures could follow if their demands are not met.

Tech Optimizer

May 13, 2026

Databricks Syncs Postgres to Lakehouse Natively

Databricks has introduced Native Lakehouse Sync, currently in public preview, which enables direct replication of data from Lakebase Postgres into Unity Catalog managed tables, simplifying data transfer without traditional pipeline complexities. This feature operates natively within Lakebase, utilizing its Write-Ahead-Log (WAL) and requiring minimal setup time. It does not negatively impact Postgres performance or incur additional costs, and schema changes are automatically propagated. Native Lakehouse Sync supports agent-first development by scaling down when idle and integrating monitoring functions. Data transferred to Unity Catalog is immediately accessible for AI-native analytics and benefits from unified governance features. Every data operation is captured as SCD Type 2 history by default, facilitating compliance and audit processes. The setup of Lakebase and activation of sync is quick, allowing existing and future tables to be available in Unity Catalog within a minute.

Winsage

May 13, 2026

Windows BitLocker zero-day gives access to protected drives, PoC released

A cybersecurity researcher known as Chaotic Eclipse has released proof-of-concept exploits for two unpatched vulnerabilities in Microsoft Windows: YellowKey, a BitLocker bypass, and GreenPlasma, a privilege-escalation flaw. The YellowKey vulnerability affects Windows 11 and Windows Server 2022/2025, allowing unauthorized access to BitLocker-protected volumes by exploiting the Windows Recovery Environment. The exploit can be executed using specially crafted 'FsTx' files on a USB drive or directly on the EFI partition. Independent researcher Kevin Beaumont has validated the exploit, which can bypass BitLocker protections even in a Trusted Platform Module (TPM) environment. The GreenPlasma vulnerability allows unprivileged users to create arbitrary memory-section objects, potentially leading to privilege escalation. Chaotic Eclipse has expressed dissatisfaction with Microsoft's handling of bug reports, prompting the public disclosure of these vulnerabilities. Microsoft has stated its commitment to investigating security issues and updating affected devices.

AppWizard

May 13, 2026

Minecraft Java finally gets a Friends List and Peer-to-Peer multiplayer

Minecraft Java has released Snapshot 26.2, specifically Snapshot 7, which introduces a Friends List feature to enhance the multiplayer experience. This feature allows players to connect with others more easily and includes functionalities such as sending and receiving friend requests, viewing friend statuses, and customizing privacy options. The Friends List can be accessed from the Title Screen and Pause Menu, with a default keybind set to "O". Additionally, Mojang has implemented Peer-to-Peer networking, enabling players to open singleplayer worlds for online multiplayer. The update also includes new musical additions and adjustments to Potent Sulfur.

Winsage

May 13, 2026

Microsoft aims to speed Windows with ‘leap forward’ in WinUI 3 perf

Microsoft has announced a 25 percent improvement in the performance of WinUI 3, specifically in File Explorer components. There has been a 41 percent reduction in memory allocations and a 45 percent decrease in function calls. Some optimizations may involve breaking changes, which will initially be optional for developers. The enhancements are intended to become the default in future iterations of WinUI and the Windows App SDK. Despite these improvements, developers have expressed concerns about WinUI 3's performance, noting it is slower than WPF and UWP. The reliance on WinRT interop for component actions is seen as a significant factor hindering speed. Additionally, there are historical tensions regarding the adoption of Microsoft's frameworks within the Windows and Office teams, leading to skepticism about their reliability.

AppWizard

May 13, 2026

Android Adds Intrusion Logging for Sophisticated Spyware Forensics

Google introduced a new opt-in feature for Android users called Intrusion Logging, which enhances the analysis of spyware attacks as part of the Advanced Protection Mode. Developed with Amnesty International and Reporters Without Borders, it logs daily device and network activities, including app activity, installations, network connections, file transfers, system certificate modifications, and device lock events. The log data is encrypted and stored securely, accessible only to the device owner. Logs are retained for 12 months and cannot be deleted by users before expiration, though they can be downloaded for offline storage. Intrusion Logging also records network events during Chrome's Incognito mode. This feature is beneficial for high-risk individuals who may be targets of surveillance. Users can access the logs through the Settings app, and the rollout is underway for devices with the Android 16 December update and newer. Additionally, Google announced other privacy and security features, including a verified financial call feature to combat scams, expansion of Live Threat Detection, evaluation of APK files for malware, revocation of accessibility services API access from non-designated apps, and enhancements to Find Hub's Mark as Lost feature. Other updates include improved device recovery options, enhanced privacy controls, introduction of AISeal with pKVM, expansion of Binary Transparency, protection against OTP theft, and strengthening data protection with post-quantum cryptography.

AppWizard

May 13, 2026

What’s New in Android Security and Privacy in 2026

The company is implementing default-on theft protections globally for all new Android 17 devices and those recently reset or upgraded. This initiative follows a successful pilot in Brazil and will also extend to devices running Android 10 or higher in Argentina, Chile, Colombia, Mexico, and the UK. Features like Remote Lock and Theft Detection Lock will automatically activate to enhance security against theft. The frequency of PIN or password attempts has been reduced, with longer wait times between failed attempts to deter brute-force attacks. Users can access their device's IMEI from the lock screen on Android 12 or higher, aiding in the recovery of stolen devices. Additionally, Android 17 introduces a temporary location sharing button for specific applications, allowing users to share their location without permanent permissions.

Winsage

May 13, 2026

Microsoft releases Windows 10 KB5087544 extended security update

Microsoft has released the Windows 10 KB5087544 extended security update, which addresses vulnerabilities identified during the May 2026 Patch Tuesday and resolves issues related to Remote Desktop warnings. Users on Windows 10 Enterprise LTSC or enrolled in the ESU program can install it via Settings under Windows Update. The update upgrades Windows 10 to build 19045.7291 and Windows 10 Enterprise LTSC 2021 to build 19044.7291. The update focuses on security enhancements and bug fixes, addressing 120 vulnerabilities. Key fixes include resolving incorrect Remote Desktop security warning dialogs in multi-monitor setups, introducing dynamic status reporting for Secure Boot, and adjusting Daylight Savings Time for Egypt. A known issue may require users to input their BitLocker recovery key after installation, affecting systems with specific BitLocker Group Policy configurations. Microsoft suggests removing the affected Group Policy setting and suspending and resuming BitLocker as a temporary solution.

Winsage

May 13, 2026

Windows 11 Gets Its First Major Feature Updates of 2026

Users of Windows 11 received feature and security updates on Patch Tuesday, with significant enhancements introduced after four months of less notable updates. The cumulative update KB5089549 is available for Windows 11 versions 25H2 and 24H2, raising their build numbers to 26200.8457 and 26100.8457, respectively. Windows 11 version 26H1, available on Snapdragon X2-based laptops, received update KB5089548, bringing its build to 28000.2113. Key features in KB5089549 include: - Xbox Mode: Replaces Game mode and Full Screen Experience for a streamlined gaming interface. - Agents on the Taskbar: Allows interaction with AI agents directly from the Taskbar, supporting first- and third-party agents. - File Explorer Enhancements: Improved support for various archiving formats, retention of View and Sort preferences, resolution of the white “flash bang” bug, and enhanced reliability of explorer.exe processes. - Windows Driver Improvements: The Windows kernel will no longer trust cross-signed third-party drivers by default; only WHCP drivers and those on a trusted legacy list will be accepted after auditing for 100 hours and three reboots. - Drag Tray Enhancements: Rebranded as the Drop tray with a new management interface and smaller peek view to reduce accidental activation. For version 26H1, KB5089548 includes improvements to Narrator and Smart App Control, increased Microsoft 365 advertising visibility in Settings, refined Pen settings, a new Settings About page, and minor updates to File Explorer.