monitor Archives

Tech Optimizer

April 2, 2025

Over 1,500 PostgreSQL Servers Hit by Fileless Malware Attack

A malware campaign has compromised over 1,500 PostgreSQL servers using fileless techniques to deploy cryptomining payloads. The attack, linked to the threat actor group JINX-0126, exploits publicly exposed PostgreSQL instances with weak or default credentials. The attackers utilize advanced evasion tactics, including unique hashes for binaries and fileless execution of the miner payload, making detection difficult. They exploit PostgreSQL’s COPY ... FROM PROGRAM function to execute malicious payloads and perform system discovery commands. The malware includes a binary named “postmaster,” which mimics legitimate processes, and a secondary binary named “cpu_hu” for cryptomining operations. Nearly 90% of cloud environments host PostgreSQL databases, with about one-third being publicly exposed, providing easy entry points for attackers. Each wallet associated with the campaign had around 550 active mining workers, indicating the extensive scale of the attack. Organizations are advised to implement strong security configurations to protect their PostgreSQL instances.

Tech Optimizer

April 2, 2025

Improve PostgreSQL performance using the pgstattuple extension

PostgreSQL is an open-source relational database management system known for its extensibility, which allows developers to enhance its capabilities through various extensions and plugins. The pgstattuple extension provides detailed statistics at the tuple level from PostgreSQL tables and indexes, revealing key metrics such as the number of live tuples, dead tuples, average length of live tuples, total free space, and percentages of free space and dead tuples. These metrics help database administrators identify potential health and performance issues, such as excessive table bloat or index fragmentation. Both Amazon Aurora and Amazon RDS support the pgstattuple extension, which can be activated using the command CREATE EXTENSION pgstattuple;. Functions like pgstattuple(relation) and pgstatindex(index) can be used to analyze physical storage and index statistics. Bloat occurs when unused space is left behind after UPDATE and DELETE operations, and the autovacuum process in PostgreSQL automates the cleanup of dead tuples. However, if autovacuum fails, manual intervention may be necessary. Regular monitoring of bloat is essential for maintaining performance, and metrics from pgstattuple can help optimize autovacuum settings. The pg_cron extension can automate VACUUM operations to manage bloat proactively. Index bloat can also be detected using pgstatindex, and significantly bloated indexes can be rebuilt using REINDEX or pg_repack. Best practices for using pgstattuple include estimating bloat with check_postgres, analyzing physical storage, monitoring dead_tuple_percent, and avoiding interference on highly active tables.

BetaBeacon

April 2, 2025

Hurry! These Smartphone Games and Apps Are Free Right Now

The fact described in the text is that there are limited-time free Android apps and games available, including an Offline Password Manager app that securely stores passwords without unnecessary features.

Tech Optimizer

April 1, 2025

Scenario Based Interview Question — 4

- An event-driven architecture utilizing Kafka, MongoDB, and PostgreSQL is employed for data management, ensuring real-time tracking and auditing. - A PostgreSQL trigger on the customer table monitors INSERT, UPDATE, and DELETE operations and uses the LISTEN/NOTIFY mechanism to publish changes. - A Spring Boot listener, CustomerChangeListener, monitors database changes and sends structured events to Apache Kafka via KafkaProducerService. - A Kafka topic named customer_events is created to manage customer change events, with KafkaProducerService publishing these events and KafkaConsumerService listening for them. - Events received by KafkaConsumerService are stored in a MongoDB collection called customer_history, which captures details about changes for auditing. - The MongoDB customer_history collection serves as a repository for historical customer changes, including who made the change, what was altered, when it occurred, and the rationale. - A project structure must be established, and the Maven pom.xml file updated with dependencies for Spring Boot, PostgreSQL, MongoDB, and Kafka. - Application properties need to be configured to connect to PostgreSQL, MongoDB, and the Kafka broker. - The main application file is CustomerTrackingApplication.java, which runs the service. - CustomerController.java manages CRUD operations for customer data, triggering database actions and Kafka notifications. - CustomerService.java contains business logic for managing customer data and interacts with PostgreSQL and Kafka. - A history table and trigger must be created in PostgreSQL to log all changes to the customer table. - CustomerChangeListener.java listens for notifications from PostgreSQL and sends relevant data to Kafka. - Kafka producer and consumer services manage messages related to customer changes, ensuring accurate history in MongoDB. - All changes (insertions, updates, deletions) are stored in the customer_history collection in MongoDB.

Winsage

April 1, 2025

Windows 10’s “update” turns off seconds on the taskbar’s Calendar flyout

The upcoming Windows 10 update on April 8, 2025, will remove the display of seconds in the Calendar flyout. This change is part of the Windows 10 KB5053643 optional update, which is being rolled out but will not install automatically. The Calendar flyout will still appear when users click on the time and date in the taskbar, but it will no longer show seconds. Microsoft has previously cited performance concerns as the reason for excluding seconds from the graphical user interface. Support for Windows 10 is set to end on October 14, 2025.

AppWizard

April 1, 2025

The Last of Us Part II Remastered Coming to PC On April 3, 2025

“The Last of Us Part II Remastered” will be released on PC on April 3, 2025, available on Steam and the Epic Games Store. This marks the first time Windows users can access the game, which previously received over 300 Game of the Year awards on PlayStation. The remastered edition includes enhancements such as improved graphics, performance, and new content, including a roguelike mode called “No Return.” Pre-orders are currently available. The PC version will support customizable graphics settings, ultrawide monitor support, and full DualSense controller features. New playable characters Bill and Marlene will be introduced in the “No Return” mode, alongside a Guitar Free Play mode and restored cut content. The game will require a minimum of an Intel Core i3-8100 or AMD Ryzen 3 1300x processor and 16GB RAM.

Winsage

March 31, 2025

Windows 11 setup bypass blocked, smaller Surface Pro confirmed, and Amazon raises concerns over Xbox & Surface returns

Microsoft is expected to unveil a smaller Surface Pro powered by Qualcomm’s Snapdragon X platform, aimed at competing with the iPad Pro, featuring a premium metal chassis and high-quality display, with pricing projected to start between 0 and 0. Additionally, Microsoft plans to introduce a smaller Surface Laptop. The company has blocked a bypass that allowed users to set up Windows 11 PCs without a Microsoft account, which has led to the emergence of a new method involving the command prompt during setup. Certain configurations of the Surface Laptop 7 and the Xbox Elite Controller Series 2 have been flagged by Amazon as frequently returned items. Bill Gates has stated that AI will replace humans "for most things," while identifying coders, energy specialists, and biologists as professions likely to remain safe from automation.

TrendTechie

March 29, 2025

10 best torrent apps and torrent downloaders for Android

Torrent applications serve various legitimate purposes, including sharing open-source software and distributing artistic works. For Android users, several noteworthy torrent apps are available: 1. **1DM**: Free download manager with integrated browser and torrent functionality; premium version available to remove ads. 2. **BitLord**: Free torrent downloader with built-in audio player and Chromecast support; Wi-Fi-only mode enabled by default. 3. **BitTorrent and µTorrent**: Free apps with similar features; BitTorrent promotes legal content, while µTorrent offers a simpler experience; both have premium versions to remove ads. 4. **FrostWire**: Free torrent downloader with support for .torrent files and magnet links; includes a basic torrent search and optional ad removal. 5. **LibreTorrent**: Free open-source torrent app with a simple UI and active torrent tracking; based on libtorrent code. 6. **nzb360**: Free app supporting multiple services; requires initial configuration but allows management of various torrent-related tasks. 7. **Torrnado**: Free app that connects to a computer for remote torrent management; offers a trial version with a paid full version. 8. **TorrDroid**: Free torrent app covering basic features; includes a torrent search function but lacks a pro version for ad removal. 9. **Transdrone**: Free app for managing torrent downloads remotely; useful for controlling seedboxes or home servers. 10. **tTorrent**: Free popular torrent app with comprehensive features, including encryption and a web interface; pro version available at a competitive price.

Winsage

March 29, 2025

Announcing Windows 11 Insider Preview Build 26120.3653 (Beta Channel)

Windows 11 Insider Preview Build 26120.3653 (KB5053658) has been released to the Beta Channel for users on Windows 11, version 24H2. The update includes new features such as Quick Machine Recovery (QMR), which automatically detects and applies fixes for boot issues, and a speech recap feature in Narrator that allows users to access previously spoken content. The update also introduces a new UI for unexpected restarts, simplifies launching Copilot with the Win + C shortcut, and enhances the Click to Do feature with intelligent text actions in multiple languages. Additionally, the Windows share window now includes a visual preview and image editing capabilities. Various fixes have been implemented for issues in the taskbar, File Explorer, windowing, Windows Update, and Settings. Known issues include problems with Recall and File Explorer crashes for some users.

Winsage

March 28, 2025

Microsoft publishes Windows roadmap as it promises transparency around feature availability

In 2025, concerns arose regarding the difficulty of tracking new features in Windows 11 during their testing and deployment phases. The Windows Insider Program faced criticism for its lack of clarity, as features sometimes bypassed experimental channels and appeared without connection to the program. Announcements about feature availability were typically made only with non-security Windows updates, complicating monitoring for IT professionals. In response, Microsoft introduced a new Windows roadmap website to enhance transparency for IT managers. This roadmap serves as a centralized hub for information on features in testing, gradual rollout, and general availability, including target release windows. However, Microsoft warned that features listed could change, and the roadmap currently focuses only on the client version of Windows 11.