methods Archives

Tech Optimizer

May 6, 2026

How Aurora Blue-Green Upgrades Cut Our Postgres Downtime by 50X

Paxos has implemented Blue-Green upgrades to improve database maintenance for asset trading, achieving a 50-fold reduction in downtime from 30-120 minutes to approximately one minute. This upgrade strategy allows for real-time synchronization between a blue cluster handling production traffic and a new green cluster with the updated version. Challenges included issues with CREATE ROLE statements disrupting upgrades due to temporary roles and the necessity to drop replication slots before PostgreSQL 17, which could lead to data loss. Additionally, upon the green cluster becoming primary, it acquires a new cluster ID, requiring updates for clients using RDS IAM authentication. The transition to PostgreSQL 17 is anticipated to resolve the need to drop logical replication slots, preserving Change Data Capture (CDC) continuity.

Winsage

May 5, 2026

Microsoft to retire Edge sidebar apps as part of Windows 11 simplification

Microsoft is retiring the sidebar app list feature from its Edge browser, starting with users signed in with a Microsoft account. The ability to add new apps to the sidebar has already been disabled, and existing pinned apps will be removed in a future update. Users will receive notifications prior to the full removal of the feature. Microsoft has not provided a direct replacement for the sidebar app list, and while features like Split Screen remain available, they do not replicate the sidebar's quick-access functionality. Microsoft plans to continue developing its Copilot integration within Edge, despite mixed user responses to the removal of the sidebar app list.

AppWizard

May 5, 2026

Google Messages may soon solve your dark viewfinder struggles

Google is introducing a feature called Low Light Boost for its messaging platform's in-app camera preview, aimed at improving visibility in dim lighting. This feature brightens the viewfinder in real-time, allowing users to frame their shots better before taking a photo. Low Light Boost adjusts brightness based on surrounding light conditions and operates instantly, unlike traditional Night Mode. There are two methods for implementing Low Light Boost: 1. Low-Light Boost AE Mode, a hardware-level auto-exposure mode available on devices running Android 15 or later, specifically on Pixel 10 devices. 2. Google Low Light Boost, a software-based solution (HDRNet) for devices that do not support AE mode, enhancing brightness through post-processing techniques. The latest beta version of Google Messages, v20260501, includes code hints for the integration of Low Light Boost, although it is not yet fully operational. The feature enhances the viewfinder experience but does not affect the quality of the final image, which requires a separate Night Mode.

Winsage

May 5, 2026

Unpatched flaws turn Ollama’s auto-updater into a persistent RCE vector, researchers say

Researchers at Striga have identified two vulnerabilities (CVE-2026-42248 and CVE-2026-42249) in Ollama’s Windows auto-updater that could allow an attacker to install a persistent executable that runs at user login. CVE-2026-42248 fails to properly verify signatures of downloaded content, while CVE-2026-42249 is a path traversal flaw that allows an attacker to inject malicious code into the user's Startup folder. Exploitation requires control over the update response, with potential methods including compromising the update infrastructure or redirecting the client. The vulnerabilities affect Ollama versions 0.12.10 through 0.17.5, and users are advised to disable auto-updates and remove shortcuts from the Startup folder to mitigate risks.

AppWizard

May 4, 2026

Hacker tracks Australian police using Android app

Australian police officers can potentially be tracked through publicly available Bluetooth applications due to a design flaw in tasers and body-worn cameras manufactured by Axon. A hacker demonstrated this vulnerability by using Android apps to detect nearby Bluetooth devices, revealing the location of police equipment, including model and serial numbers. The flaw arises from the failure to implement MAC address randomization, which could enhance security. The hacker developed software capable of tracking devices from over 400 meters away, raising concerns about the potential for criminal activities targeting police. Despite warnings to various police agencies, responses indicated confidence in existing security measures, although similar risks have been noted in the US, leading to the cessation of Axon body camera use by US Border Patrol agents. The vulnerability is considered a hardware-level issue, requiring significant redesign efforts from Axon to address it.

Tech Optimizer

May 4, 2026

Microsoft Defender wrongly flags DigiCert certs as Trojan:Win32/Cerdigent.A!dha

Microsoft Defender mistakenly flagged legitimate DigiCert root certificates as Trojan:Win32/Cerdigent.A!dha, leading to their removal from Windows systems globally. This issue arose after a Defender signature update on April 30th, with affected certificates including 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 and DDFB16CD4931C973A2037D3FC83A4D7D775D05E4. The certificates were removed from the AuthRoot store under the Registry key HKLMSOFTWAREMicrosoftSystemCertificatesAuthRootCertificates. Microsoft has addressed the issue in Security Intelligence update version 1.449.430.0, which also restored the removed certificates. The false positives were linked to detections related to a recent DigiCert breach, where threat actors obtained valid code-signing certificates used for signing malware. DigiCert revoked 60 code-signing certificates, including those linked to the "Zhong Stealer" malware campaign. The malware utilized certificates issued to companies like Lenovo and Kingston, but the certificates flagged by Microsoft Defender are root certificates and do not correspond to the revoked code-signing certificates.

AppWizard

May 4, 2026

Class uses Minecraft as building blocks for MCAT

A new course at the University of Texas at Dallas, titled Experiential Medical Reasoning, immerses premed students in a virtual hospital environment using Minecraft. The course, developed by IvyBee, Inc., allows students to engage with fictional patients and make medical decisions based on symptoms and charts. The digital replica of Parkland Memorial Hospital enables students to experience various medical roles while preparing for the MCAT. Students have reported improvements in their MCAT practice scores and gained insights into hospital operations. The course is part of a broader initiative led by Dr. Walter Voit, who aims to enhance student engagement through innovative educational tools.

AppWizard

May 3, 2026

Everything new in Minecraft Bedrock 26.30.25/26 beta and preview

Mojang has released the Minecraft 26.30.25/26 Beta and preview build, introducing new features such as Geysers that launch players skyward and Sulfur Cubes that can absorb TNT blocks with varying fuse times based on activation methods. The update includes bug fixes, such as correct generation of iron doors and stone buttons in strongholds, crafting adjustments for Sulfur Spikes, and improvements to video settings and user interface. Technical updates feature the transition of four entity components to the 1.26.30 format, the addition of voxel shapes for 46 vanilla blocks, and a new SoundInstance API class for sound playback control.

Winsage

May 2, 2026

Windows finally fixed File Explorer’s most annoying quirk, and it only took 20 years

Windows 11's latest builds (26100.8313 and 26200.8313) have improved folder view consistency in File Explorer, ensuring that user-configured settings persist regardless of how a folder is accessed. This update eliminates the need for registry tweaks. Additionally, the updates enhance File Explorer's speed and performance, resolve a white flash issue in dark mode, introduce a "preview anyway" button for the preview pane, and add support for four new archive formats. These changes are currently available in the Release Preview channel and will soon be rolled out to regular users.

AppWizard

May 2, 2026

Google releases experimental ‘COSMO’ AI assistant app on Play Store

Google released an experimental AI assistant application called COSMO for Android devices, which has since been removed from the Play Store due to an accidental launch. The app, which is 1.13 GB in size, was designed to enhance daily productivity by organizing schedules and answering complex queries. COSMO features include a list tracker, document writer, calendar event suggester, browser agent, timer suggestions, deep research capabilities, quick photo lookup, web search functionality, jargon definitions, insights provision, context understanding for people and events, recall assistance, and conversation summarization. It offers three settings: Hybrid, PI Only, and Nano Only, with the latter two indicating different processing methods. The app also includes voice match and screen access features but is not intended for the general consumer market.