port Archives

AppWizard

May 23, 2026

Retro enthusiast injects Snake game into vintage S3 graphics card VBIOS — enjoy some serpentum fun while your old PC boots

A retro PC enthusiast modified the VBIOS of an S3 ViRGE DX graphics card to include a version of the classic game Snake, allowing users to play it briefly during system boot. This project, by the YouTube channel Bits und Bolts, involved embedding Snake 512, a compact game written in x86 assembly language. The modification includes a dynamic text splash screen displaying the GPU's operating frequency and prompts users to play Snake or skip to the boot process. The implementation does not support USB keyboards and has no sound during gameplay. The enthusiast also customized the game's colors using hexadecimal values from the VGA color palette.

Winsage

May 23, 2026

CVE-2026-45585: YellowKey BitLocker Bypass

BitLocker, a security feature for data protection, has a vulnerability identified as CVE-2026-45585, also known as YellowKey, which allows unauthorized access to encrypted data on Windows 11 versions 24H2, 25H2, 26H1, and Windows Server 2025. This flaw does not compromise BitLocker’s encryption but affects the recovery environment supporting it. The vulnerability can be exploited locally through the Windows Recovery Environment (WinRE) by an attacker with physical access, who can trigger an unrestricted shell and access the BitLocker-protected volume. Microsoft has provided two mitigation strategies: modifying the WinRE image to remove the autofstx.exe entry and transitioning from TPM-only protection to a TPM+PIN requirement at startup. The exploit poses challenges for detection, as it occurs pre-boot and currently lacks vendor-published indicators of compromise. Organizations using BitLocker for unattended devices are particularly at risk, as the vulnerability can lead to loss of confidentiality if an attacker gains access before the legitimate user.

BetaBeacon

May 22, 2026

This OLED Android handheld is great for PS2 games, and it just got a cheaper model

ANBERNIC has released an 8GB/128GB version of the RG577 handheld, which is currently being sold for a discounted price on their website. The device features a MediaTek Dimensity 8300 chipset, a 5.48-inch OLED screen, a 5,500mAh battery, and other notable specs. Despite facing competition from other handhelds with OLED screens and Snapdragon chipsets, the RG577 is still considered a capable Android handheld option under 0.

BetaBeacon

May 22, 2026

AYANEO gives us a first official look at its Game Boy-like Pocket BLOCK

AYANEO has unveiled the KONKR Pocket BLOCK handheld, a pocket-friendly vertical device with a Game Boy-style design. It features a microSD card slot, a 3.5mm port, and will be available in grey and purple colors. The device is expected to be more affordable and compact, making it an attractive option for those looking for a pocket-friendly Android handheld.

AppWizard

May 21, 2026

“We All Know How This Will End” – Kirby’s Dream Land 2 & 3 Are Getting Unofficially Ported To PC, But Will Nintendo Step In?

Kirby's early adventures are being modernized through a new PC port developed by Grape Garden Games in collaboration with Team Starfall, featuring enhanced visuals and additional content for Kirby's Dream Land 2+3. A demo is set to launch on May 30th. This project is not officially associated with HAL Laboratory, raising concerns about its longevity due to Nintendo's history of pursuing fan-made projects. Existing ROM hacks, such as Kirby's Dream Land 2 DX, continue to be popular among fans.

BetaBeacon

May 20, 2026

The Best Android Games to Download This Summer 2026

Balatro is a poker-inspired roguelike deckbuilder game that has no aggressive monetization or energy systems, allowing players to pay once and own it.

Tech Optimizer

May 19, 2026

20-Year-Old PostgreSQL Flaw Gets Public PoC Exploit for Remote Code Execution

A proof-of-concept exploit for CVE-2026-2005 has been released, highlighting a significant vulnerability in the PostgreSQL pgcrypto extension that allows for remote code execution (RCE). This flaw, rooted in legacy code for nearly 20 years, enables attackers to escalate privileges and execute arbitrary commands on compromised servers. The vulnerability is found in the PGP session key parsing logic of the pgcrypto module and involves a heap-based buffer overflow, granting attackers arbitrary read and write access to memory. The exploit, shared by researcher “var77” on GitHub, demonstrates a multi-stage process that bypasses modern security measures like Address Space Layout Randomization (ASLR) using specially crafted PGP messages. The attack involves several steps, including heap pointer leakage, arbitrary memory read, identification of executable memory regions, and privilege escalation to the PostgreSQL superuser level, ultimately allowing the execution of OS-level commands. The vulnerability affects PostgreSQL deployments with the pgcrypto extension enabled, particularly those using vulnerable code versions. Successful exploitation can lead to full database compromise, unauthorized data access or modification, and potential lateral movement within networks. Organizations are advised to update PostgreSQL, restrict pgcrypto usage, limit user privileges, and monitor for unusual activity to mitigate risks.

Tech Optimizer

May 19, 2026

PoC Released for 20-Year Old PostgreSQL RCE Flaw

A public proof-of-concept exploit has been released for CVE-2026-2005, a critical heap-based buffer overflow vulnerability in PostgreSQL's pgcrypto extension, allowing full remote code execution and privilege escalation to the database superuser level. This vulnerability has existed since 2005 and was discovered by an AI-powered security tool during the ZeroDay.Cloud 2025 event in December 2025. An upstream patch was committed on February 8, 2026, and released on February 12, 2026. The vulnerability has a CVSS score of 8.8 and affects approximately 80% of cloud environments using PostgreSQL, with 45% accessible via the internet. The flaw is in the pgp_parse_pubenc_sesskey() function, which lacks bounds checking, allowing attackers to manipulate session key lengths. The pgcrypto extension can be installed by any database role with CREATE privileges, increasing the risk of exploitation. The proof-of-concept exploit involves an information leak, arbitrary write, and privilege escalation to remote code execution. The vulnerability affects all major versions of PostgreSQL prior to the February 2026 releases, which include versions 18.2, 17.8, 16.12, 15.16, and 14.21. Mitigation steps include upgrading to patched versions, restricting CREATE privileges, blocking direct internet exposure, rotating database credentials, auditing the usage of COPY FROM PROGRAM, and verifying patched engine versions for cloud-managed PostgreSQL users.

BetaBeacon

May 19, 2026

One of the best handheld Zelda games is now (unofficially) available on Android

An unofficial Android port of The Legend of Zelda: The Minish Cap has been released by developer MatheoVignaud.

AppWizard

May 19, 2026

Sony retreats from PC gaming, robbing us of maybe 4 games

Herman Hulst, the head of PlayStation, announced that single-player PlayStation titles will no longer be released on PC, marking a shift in the company's strategy. This decision comes as Sony focuses on boosting console sales amid declining interest in traditional gaming hardware. While multiplayer titles will still be available on PC, major action-adventure games from studios like Naughty Dog or Insomniac will require a PS5. Upcoming titles include Marvel's Wolverine and God of War: Sons of Sparta in 2026, and Ghost of Yōtei and Death Stranding 2 in 2025. The price of the PS5 has increased to 0, complicating the appeal of exclusive titles. Critics argue the perceived value of the PS5 is diminishing due to a lack of significant library expansion, while the PC gaming landscape continues to grow, with platforms like SteamOS and devices like the Steam Deck enhancing accessibility.