Security Archives

AppWizard

April 3, 2025

Android 15 blocked Phone Link from mirroring sensitive notifications, but Microsoft has a fix

Microsoft's Phone Link app can now mirror sensitive notifications from Android devices to Windows PCs after the Android 15 update had initially restricted this capability. The Android 15 update classified two-factor authentication codes as sensitive, blocking their visibility to most notification listeners, including Phone Link. To access sensitive notifications, Phone Link must be preinstalled on the device and granted the RECEIVESENSITIVENOTIFICATIONS permission. Users with devices that have Link to Windows preinstalled, like the Xiaomi 15 Ultra and Samsung Galaxy S25 Ultra, can grant permission to restore full functionality. For devices without the preinstalled app, workarounds include disabling Android System Intelligence notification processing or manually granting permissions.

Tech Optimizer

April 2, 2025

Amazon RDS Proxy announces TLS 1.3 support for PostgreSQL on Aurora and RDS

Amazon RDS Proxy now supports TLS 1.3 for connections to Amazon Aurora PostgreSQL and RDS for PostgreSQL database instances, enhancing security with stronger cryptographic algorithms and a streamlined handshake process. The Proxy automatically negotiates the highest security level during connection setup and can be configured to enforce TLS 1.3 exclusively. TLS 1.3 support is also available for RDS Proxy for MySQL engines. RDS Proxy is a fully managed database proxy that improves performance, reliability, scalability, and security for RDS and Amazon Aurora databases.

Tech Optimizer

April 2, 2025

Over 1,500 PostgreSQL Servers Hit by Fileless Malware Attack

A malware campaign has compromised over 1,500 PostgreSQL servers using fileless techniques to deploy cryptomining payloads. The attack, linked to the threat actor group JINX-0126, exploits publicly exposed PostgreSQL instances with weak or default credentials. The attackers utilize advanced evasion tactics, including unique hashes for binaries and fileless execution of the miner payload, making detection difficult. They exploit PostgreSQL’s COPY ... FROM PROGRAM function to execute malicious payloads and perform system discovery commands. The malware includes a binary named “postmaster,” which mimics legitimate processes, and a secondary binary named “cpu_hu” for cryptomining operations. Nearly 90% of cloud environments host PostgreSQL databases, with about one-third being publicly exposed, providing easy entry points for attackers. Each wallet associated with the campaign had around 550 active mining workers, indicating the extensive scale of the attack. Organizations are advised to implement strong security configurations to protect their PostgreSQL instances.

Winsage

April 2, 2025

6 reasons why I think Microsoft should keep the ‘local account’ option in Windows 11

Microsoft has updated Windows 11 to make it more difficult for users to bypass internet and Microsoft account requirements during installation, specifically in builds 26120.3653 and 26200.5516. The "BypassNRO.cmd" script, which allowed the creation of local accounts without an internet connection, has been removed. Local accounts provide enhanced privacy by storing data locally, simplify the setup process without needing an internet connection, and allow unrestricted access to systems in offline environments. Users can choose meaningful folder names with local accounts, and they facilitate smoother Remote Desktop connections compared to Microsoft accounts. Although local accounts can still be created post-installation, there are concerns about their availability in future updates, especially for the Home edition.

AppWizard

April 2, 2025

Today’s Android app deals and freebies: Cubasis 3, Rotaeno, Zombie Sim Z, and more

A collection of Android game and app deals has been released on Google Play. Lenovo's touchscreen Yoga Slim 7i Aura Edition Copilot+ PC is highlighted for its features. Google’s Find My Device trackers are available for a reduced price. The Google Pixel Tablet is discounted by 0, and the Galaxy Watch Ultra has a price reduction of 0.

Winsage

April 2, 2025

Microsoft adds hotpatching support to Windows 11 Enterprise

Microsoft has made hotpatch updates available for business customers using Windows 11 Enterprise 24H2 on x64 systems, allowing seamless installation of security updates without device reboots. Hotpatching modifies in-memory code of active processes to deploy updates without interrupting user activities. Devices under a hotpatch-enabled quality update policy will receive updates quarterly, with no restarts required for eight months of the year. A Microsoft subscription is necessary to activate hotpatching, and devices must meet specific prerequisites, including an x64 CPU and enabled Virtualization-based Security. Hotpatch updates can be managed through Microsoft Intune, and devices on Windows 10 and versions 23H2 and lower will continue to receive standard updates. Microsoft initially introduced hotpatch support for Windows Server Azure Edition in February 2022 and has expanded testing to include Windows 11 24H2.

Tech Optimizer

April 2, 2025

When it comes to security, public Wi-Fi could be a risky choice for commuters worldwide

Research from NordVPN indicates that 47% of commuters use strong passwords or passcodes, 46% regularly update their software, 20% use privacy screen protectors, and only 17% utilize a VPN for added security while traveling.

Tech Optimizer

April 2, 2025

Thousands of PostgreSQL servers are being hijacked to mine crypto

Researchers at Wiz have identified a cryptojacking campaign by a group called JINX-0126, targeting over 1,500 misconfigured PostgreSQL servers by exploiting weak login credentials. The attackers deploy the XMRig-C3 miner to mine Monero, consuming nearly all computing resources and increasing electricity usage for victims. Each compromised device is assigned a unique mining worker for tracking. The campaign has evolved to include defensive measures and fileless deployment to evade detection. Nearly 90% of cloud environments host PostgreSQL instances, with about one-third publicly accessible, highlighting security vulnerabilities.

Winsage

April 2, 2025

This simple upgrade is making old computers feel new again

Many users experience issues with sluggish laptops and frozen screens, prompting a reconsideration of their devices. Microsoft is ending support for Windows 10, making it a good time to upgrade to Windows 11, specifically the Pro version, which is currently priced at .97, down from .99. Windows 11 Pro offers faster startup times, enhanced battery life, improved application performance, a redesigned user interface, productivity features like snap layouts and widgets, and an AI-powered assistant called Copilot. The Pro version also includes remote desktop access, BitLocker device encryption for security, and advanced features like Azure AD, Hyper-V, and Windows Sandbox. There are fewer than 75 licenses remaining at the promotional price.

AppWizard

April 2, 2025

Latest Market Trends for Android TV App Development in 2025

The smart TV market is projected to grow from USD 225.43 billion in 2023 to USD 252.41 billion in 2024, reaching USD 623.62 billion by 2032, with a compound annual growth rate (CAGR) of 11.97% from 2024 to 2032. This growth is driven by increased global internet penetration and better access to high-speed broadband, allowing consumers to stream content on smart TVs. The rising popularity of smart TVs is attributed to the convenience of accessing various applications for streaming, gaming, and fitness. Businesses are investing in smart Android TV app development to engage customers effectively, as audiences spend more time on screens. Key trends in Android TV app development for 2025 include the use of AI and ML for personalized experiences, AR and VR for immersive interactions, 5G technology for enhanced performance, instant apps for improved user experience, cross-platform development, on-demand applications, and blockchain technology for security. The cost of developing an Android TV app ranges from ,000 to ,000, depending on complexity, with more intricate applications potentially exceeding 0,000.