Extension Archives

AppWizard

July 7, 2025

Report says ByteDance is creating a new TikTok US version to quell ‘concerns’

ByteDance is developing a U.S.-specific version of TikTok to address concerns from the U.S. government about the app's ties to China and user data handling. This new application is expected to launch on September 5, before a potential ban on September 17. There are over 170 million TikTok users in the U.S., making the transition to a new app complicated. The U.S. government has expressed concerns about TikTok's data collection and potential propaganda dissemination. The House passed a bill requiring TikTok to either sell to a U.S. company or face a ban. ByteDance prefers not to divest TikTok and has been granted extensions to operate in the U.S. until September 17.

Tech Optimizer

July 7, 2025

Percona offers clear view into Transparent Data Encryption

Percona has launched its Transparent Data Encryption (TDE) extension for PostgreSQL, designed to secure sensitive data at rest without licensing fees or usage restrictions. TDE automatically encrypts and decrypts data at the database layer, protecting backups and transaction logs, with encryption keys stored separately. The pg_tde extension supports compliance with regulations like GDPR, HIPAA, SOX, and PCI DSS v4.0, and allows users to encrypt all database files, apply encryption at the table level, and maintain control over their encryption strategies. It integrates with Key Management Services (KMS) providers and requires a patched PostgreSQL server to function. Percona aims to extend pg_tde to Community PostgreSQL, with some code already contributed for review. The extension is included in the Percona Distribution for PostgreSQL, which also offers support and consulting services for TDE setup and configuration.

Tech Optimizer

July 5, 2025

Critical PHP Vulnerabilities Expose Systems to SQL Injection & DoS Attacks

A security vulnerability identified as CVE-2025-1735 in the PHP pgsql extension has been disclosed, classified with moderate severity. It arises from inadequate error checking during input data escaping, specifically the failure to pass error parameters to the PQescapeStringConn() function and not verifying NULL values from PQescapeIdentifier(). This flaw affects PHP versions prior to 8.1.33, 8.2.29, 8.3.23, and 8.4.10, allowing potential SQL injection attacks and application crashes due to null pointer dereferences. The vulnerability is linked to a recent PostgreSQL vulnerability (CVE-2025-1094) related to invalid multibyte character handling. Developers are urged to upgrade to patched releases to mitigate risks.

Tech Optimizer

July 5, 2025

Multiple PHP Vulnerabilities Allow SQL Injection & DoS Attacks

Critical security vulnerabilities in PHP, identified as CVE-2025-1735 and CVE-2025-6491, pose risks for SQL injection attacks and denial of service (DoS) conditions. These vulnerabilities affect PHP versions below 8.1.33, 8.2.29, 8.3.23, and 8.4.10. CVE-2025-1735 relates to the PostgreSQL extension, where insufficient error checking during string escaping can lead to SQL injection vulnerabilities and application crashes. This flaw is associated with PostgreSQL's CVE-2025-1094. CVE-2025-6491 affects the SOAP extension, causing segmentation faults when a SoapVar instance has a namespace prefix exceeding 2GB, which can lead to application termination. This issue is linked to limitations in libxml2 versions prior to 2.13. Patches are available for all affected PHP versions to mitigate these vulnerabilities. CVE-2025-1735 has a CVSS score of 9.1 (Critical), while CVE-2025-6491 has a CVSS score of 5.9 (Moderate).

Tech Optimizer

July 4, 2025

Percona launches free open source encryption for PostgreSQL data

Percona has introduced Transparent Data Encryption (TDE) for PostgreSQL as a fully open-source and production-ready solution, enabling organizations to encrypt data at rest and comply with regulations like PCI DSS v4.0 without incurring licensing fees. The TDE extension, named pg_tde, is now part of the Percona Distribution for PostgreSQL and addresses barriers to adopting enterprise-level data encryption in open-source environments. Key features include encryption of all database files on disk, granular encryption policies, seamless integration into existing systems, and streamlined key management with major Key Management Services. The solution supports online key rotation and has minimal performance impact. Percona also provides 24/7 assistance for setup and management, making the solution accessible to organizations of all sizes.

Winsage

July 4, 2025

I don’t care that Microsoft is extending Windows 10’s support, I’m still moving to Linux

Microsoft has announced free options for Windows 10 users to extend support, initially expected to require an annual fee. However, many users are still planning to transition away from Windows. Microsoft will eventually phase out Windows 10, pushing users towards Windows 11. The company aims to encourage upgrades to new hardware and software, which may lead to increased advertisements within Windows 10. Users considering the free security extension have options like syncing settings to OneDrive or redeeming Microsoft Rewards points, but these may not appeal to those planning to switch to Linux. Linux Mint is presented as a more exciting alternative, offering continuous updates and a vibrant community, attracting users looking for a dynamic computing experience.

Winsage

July 4, 2025

Gamers continue to make the switch to Windows 11 — and not just from Windows 10, either

Windows remains the dominant operating system for gaming, with a modest increase in market share as users transition from Windows 10 to Windows 11. Windows 11 is approaching the market share of Windows 10, while Windows 7's share is declining. Microsoft has extended security support for Windows 10 for an additional year, potentially slowing migration to Windows 11. The most-used GPU among Steam players has shifted from the NVIDIA RTX 3060 to the RTX 4060 laptop variant, indicating a change in gaming hardware preferences. AMD is gaining market share, particularly with devices like the Steam Deck and ROG Ally, contributing to a more diverse gaming landscape.

Winsage

July 2, 2025

‘It’s obvious that users are frustrated’: consumer rights group accuses Microsoft of not providing a ‘viable solution’ for Windows 10 users who can’t upgrade to Windows 11

Microsoft has introduced alternatives to the fee for extended support for Windows 10, including the option to pay for an additional year of security updates and using the Windows Backup app to sync settings to OneDrive. However, the Public Interest Research Group (PIRG) argues that these measures are insufficient to address the e-waste crisis, as the hardware requirements for Windows 11 may render millions of functional PCs obsolete by October 2025. PIRG's Lucas Rockett Gutterman stated that Microsoft's options are unlikely to help the estimated 400 million Windows 10 PCs that cannot upgrade to Windows 11. He called for longer-term support for Windows 10 or relaxed hardware requirements for Windows 11. Currently, businesses have access to a three-year extended security update program, while consumers only have one year. The disparity raises concerns about the environmental impact of discarding usable devices. Gutterman suggested that one additional year of support, even if fee-based, could help consumers, and proposed exploring a non-paying option like ad-supported Windows 10 to fund continued security updates.

Winsage

July 2, 2025

One of the best PowerToys features just got even better — and it puts Windows Search to shame

PowerToys has released version 0.92, introducing several enhancements: - Command Palette: Improved performance with Ahead-of-Time (AOT) compatibility for first-party extensions and core UX fixes. - Color Picker: Users can customize mouse button actions for a personalized workflow. - Bug Report Tool: Streamlined reporting process with progress indicators, improved compression, and automatic cleanup of old trace logs. - File Explorer Add-ons: Enhanced rendering stability, fixing issues with PDF previews, blank thumbnails, and text file crashes. Additional highlights include: - Crop & Lock: Updated window styling to match the current Windows theme. - Command Palette Extensions: New commands like "Copy Path" and improved input handling in the Calculator extension. - FancyZones: Resolved DPI-scaling issues for high-resolution displays. - PowerRename: Now supports date-based renaming with flexible formatting options. The development team has also made updates to enhance performance and security, including updates to .NET libraries and the WinAppSDK. PowerToys is available for free download through the Microsoft Store or GitHub.

Tech Optimizer

July 2, 2025

Coming to PostgreSQL

Transparent Data Encryption (TDE) is a method for securing data at the storage layer, which PostgreSQL lacks in its open-source version. Percona has developed a TDE extension called pg_tde, included in the Percona Distribution for PostgreSQL, and aims to integrate it into the main PostgreSQL distribution. The extension is beneficial for organizations needing to comply with regulations like GDPR. EDB also offers a TDE solution, but only within its licensed products. Percona's TDE provides enterprise-grade data-at-rest protection without licensing fees. The extension encrypts all database files on disk and features centralized Key Management, compatible with various Key Management Services (KMS) providers.