default Archives

Winsage

May 16, 2026

Announcing new builds for 15 May 2026

The Windows Insider Program is expanding the rollout of its revamped Beta Channel experience to devices. New Windows 11 Insider Preview Builds are being released, with release notes available for all Insiders. Existing Beta Channel Insiders on Windows 11 version 26H1 will receive the same build version as Experimental (26H1) for now, but distinct builds will be introduced in the coming weeks. Users transitioning from the default 25H2 core version to 26H1 may experience a delay in the new version uptake. Notable new features include: - Taskbar Improvements: Users can reposition the taskbar to the top, bottom, left, or right of the screen. A smaller taskbar option is also introduced for better screen space utilization. - Widgets: Taskbar badging color will now align with the Windows accent color, and user experience will be tailored based on engagement levels. - Windows Search Box: Enhancements are being made to prioritize files and apps over web suggestions for improved relevance.

Winsage

May 15, 2026

Improving Windows quality: Making Taskbar and Start more personal

Microsoft is enhancing the Windows experience by focusing on performance, reliability, and craftsmanship, with a commitment to transparency about updates. The Start menu and taskbar are receiving particular attention, with new customization options being introduced for users in the Experimental channel. Users can now reposition the taskbar to any edge of the screen, customize icon alignment, and view every window at a glance with ungrouped icons. A more compact taskbar option will also be available for smaller screens. The Start menu will feature section-level toggles for easier customization, separate controls for file recommendations, size settings, and the option to hide user names for privacy. The Recommended section will be renamed Recent to better reflect its purpose. These features will be gradually rolled out, with user feedback being encouraged through the Feedback Hub.

Tech Optimizer

May 15, 2026

From commit to cloud: Powering what’s next for PostgreSQL

PostgreSQL is widely used across various industries, supported by Microsoft through significant investments, including 345 commits to the latest release and a dedicated team of contributors. It is recognized for its ability to handle complex production challenges, such as transactional integrity and concurrency management. Microsoft operates PostgreSQL globally, informing upstream contributions based on real-world deployment experiences. The database is increasingly integrated into AI applications, with Azure Database for PostgreSQL and Azure HorizonDB focusing on AI functionalities. Microsoft offers multiple deployment models to accommodate different workload needs, including Azure Database for PostgreSQL for open-source workloads and Azure HorizonDB for cloud-native systems. Recent contributions from Microsoft include enhancements in asynchronous I/O, vacuum behavior, and query planning. Azure HorizonDB is designed for high-throughput, low-latency systems requiring horizontal scaling. Microsoft also invests in developer tools, such as a Visual Studio Code extension for PostgreSQL, and sponsors PostgreSQL conferences and user groups globally.

Winsage

May 15, 2026

Why I’m still tweaking Windows 11’s Registry, even after April’s “improvements”

Windows 11's April update includes performance boosts, a refined File Explorer, and a revamped Settings app, but primarily addresses existing issues rather than customization preferences. Users still face challenges with the lack of easily accessible customization options, leading many to rely on registry tweaks to adjust settings not available through the standard Settings menu. Key registry modifications include restoring the classic right-click menu, adding an "End Task" option to the taskbar's right-click menu, disabling Bing search in the Start menu, and removing the Recommended section from the Start Menu. These tweaks enhance functionality and convenience, as the updates do not sufficiently address user customizability concerns.

Winsage

May 15, 2026

Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit named YellowKey allows individuals with physical access to Windows 11 systems to bypass BitLocker encryption protections. Discovered by researcher Nightmare-Eclipse, this vulnerability enables unauthorized users to access encrypted drives quickly. The exploit involves transferring a custom FsTx folder to a USB drive, connecting it to a BitLocker-protected device, and entering recovery mode to gain command prompt access without needing a BitLocker recovery key. Esteemed researchers Kevin Beaumont and Will Dormann have confirmed the exploit's functionality, although the specific mechanism within the FsTx folder that enables the bypass is not fully understood.

AppWizard

May 14, 2026

5 Android App Permissions You Should Never Allow

Users should be cautious when granting permissions to applications on Android devices, as extensive access can lead to security vulnerabilities. Apps with accessibility permissions can perform actions like hacking passwords and altering device settings without user consent. Overlay permissions allow apps to display content over others, which can be exploited by malicious apps to trick users into providing sensitive information. Installing apps from unknown sources poses risks to device security and privacy. Usage data access enables apps to monitor user activity, which can be sold to advertisers. Granting access to contacts and SMS can lead to privacy concerns, as this information can be exploited by malicious entities. Users are advised to regularly review and manage app permissions to mitigate potential threats.

Winsage

May 13, 2026

Disgruntled researcher releases two more Microsoft zero-days

An anonymous researcher known as Nightmare-Eclipse has revealed two new vulnerabilities affecting Windows systems, named YellowKey and GreenPlasma, shortly after Microsoft's latest Patch Tuesday update. YellowKey is a "BitLocker bypass" that allows attackers with physical access to gain unrestricted shell access to protected machines. Experts have expressed concerns about YellowKey's potential to transform laptop theft into a serious breach notification scenario, and suggested mitigations such as implementing a BitLocker PIN and a BIOS password lock. Nightmare-Eclipse has also hinted that YellowKey could function as a backdoor allegedly introduced by Microsoft, although this claim remains unsubstantiated. GreenPlasma is a privilege escalation flaw for which partial exploit code has been released, but it currently triggers a User Account Control (UAC) consent prompt, requiring attackers to invest time in weaponizing it. There is no known mitigation for GreenPlasma, making it crucial for organizations to patch their systems promptly once Microsoft addresses the issue. Nightmare-Eclipse has previously disclosed five zero-day vulnerabilities this year, including BlueHammer, and has characterized their actions as a response to a perceived violation of trust. The researcher has indicated the existence of a "dead man's switch," suggesting that more disclosures could follow if their demands are not met.

Tech Optimizer

May 13, 2026

Databricks Syncs Postgres to Lakehouse Natively

Databricks has introduced Native Lakehouse Sync, currently in public preview, which enables direct replication of data from Lakebase Postgres into Unity Catalog managed tables, simplifying data transfer without traditional pipeline complexities. This feature operates natively within Lakebase, utilizing its Write-Ahead-Log (WAL) and requiring minimal setup time. It does not negatively impact Postgres performance or incur additional costs, and schema changes are automatically propagated. Native Lakehouse Sync supports agent-first development by scaling down when idle and integrating monitoring functions. Data transferred to Unity Catalog is immediately accessible for AI-native analytics and benefits from unified governance features. Every data operation is captured as SCD Type 2 history by default, facilitating compliance and audit processes. The setup of Lakebase and activation of sync is quick, allowing existing and future tables to be available in Unity Catalog within a minute.

Winsage

May 13, 2026

Windows BitLocker zero-day gives access to protected drives, PoC released

A cybersecurity researcher known as Chaotic Eclipse has released proof-of-concept exploits for two unpatched vulnerabilities in Microsoft Windows: YellowKey, a BitLocker bypass, and GreenPlasma, a privilege-escalation flaw. The YellowKey vulnerability affects Windows 11 and Windows Server 2022/2025, allowing unauthorized access to BitLocker-protected volumes by exploiting the Windows Recovery Environment. The exploit can be executed using specially crafted 'FsTx' files on a USB drive or directly on the EFI partition. Independent researcher Kevin Beaumont has validated the exploit, which can bypass BitLocker protections even in a Trusted Platform Module (TPM) environment. The GreenPlasma vulnerability allows unprivileged users to create arbitrary memory-section objects, potentially leading to privilege escalation. Chaotic Eclipse has expressed dissatisfaction with Microsoft's handling of bug reports, prompting the public disclosure of these vulnerabilities. Microsoft has stated its commitment to investigating security issues and updating affected devices.

AppWizard

May 13, 2026

Minecraft Java finally gets a Friends List and Peer-to-Peer multiplayer

Minecraft Java has released Snapshot 26.2, specifically Snapshot 7, which introduces a Friends List feature to enhance the multiplayer experience. This feature allows players to connect with others more easily and includes functionalities such as sending and receiving friend requests, viewing friend statuses, and customizing privacy options. The Friends List can be accessed from the Title Screen and Pause Menu, with a default keybind set to "O". Additionally, Mojang has implemented Peer-to-Peer networking, enabling players to open singleplayer worlds for online multiplayer. The update also includes new musical additions and adjustments to Potent Sulfur.