technical issue Archives

Tech Optimizer

June 23, 2026

Active Exploitation of Critical CVE-2026-20253 in Splunk Enterprise: Unauthenticated RCE via PostgreSQL Sidecar Service

A critical security vulnerability, SVD-2026-0603 (CVE-2026-20253), has been identified in Splunk Enterprise versions 10.0.0 through 10.0.6 and 10.2.0 through 10.2.3. This flaw allows unauthenticated, remote attackers to create or truncate arbitrary files on the host system by exploiting the PostgreSQL Sidecar Service endpoints. The vulnerability is actively exploited, with public proof-of-concept code available, and has been added to the CISA Known Exploited Vulnerabilities (KEV) list. Successful exploitation can lead to full remote code execution (RCE) as the Splunk user. The vulnerability arises from inadequate authentication controls on the PostgreSQL Sidecar Service endpoints, specifically /v1/postgres/recovery/backup and /v1/postgres/recovery/restore, which are accessible without authentication. It is classified under CWE-306: Missing Authentication for Critical Function and has a CVSS v3.1 base score of 9.8 (Critical). Attackers can exploit the vulnerability by sending crafted HTTP POST requests to the exposed endpoints, allowing them to create or truncate files and potentially execute malicious scripts. Indicators of compromise include unexpected files in directories such as /tmp/ or /opt/splunk/var/run/supervisor/pkg-run/, modified Splunk Python scripts, and unusual outbound connections from Splunk to unknown PostgreSQL servers. The vulnerability aligns with several MITRE ATT&CK techniques, including T1190 (Exploit Public-Facing Application) and T1059 (Command and Scripting Interpreter). Active exploitation of CVE-2026-20253 has been confirmed, and it is likely that both opportunistic cybercriminals and sophisticated threat actors will use this exploit. The affected versions of Splunk Enterprise are 10.2.0 through 10.2.3 and 10.0.0 through 10.0.6, with the issue resolved in versions 10.2.4 and 10.0.7. Organizations are advised to upgrade to fixed versions or disable the PostgreSQL Sidecar Service as a mitigation strategy.

AppWizard

June 13, 2026

Is Facebook down? Facebook query error. Instagram down for some

On June 12, a technical disruption affected Facebook and its parent company Meta's platforms, including Facebook, Facebook Messenger, and Instagram, starting around 9:30 a.m. EST. Users reported access issues, with many unable to log into Facebook and receiving messages indicating that pages were unavailable. Instagram users faced loading challenges, and Facebook Messenger experienced outages. By 11 a.m. EST, some users saw signs of recovery, although issues persisted for others. Meta attributed the disruptions to a technical issue that has since been resolved and issued an apology, stating they are working to prevent future occurrences.

AppWizard

May 6, 2026

Pyre Lookout is a Disco Elysium-esque tale of bureaucratic incompetence, red tape, and frogs

Players navigate the whimsical yet frustrating world of Pyre Lookout, a flash game developed by Outstar and titos2k, where they assume the role of Gerard Path, the Senior Signaling Specialist at the Pyre Lookout Unit. The game features quirky characters like Scott, the HR-driven manager; Jayda, the apathetic youth; and Phylis, a seasoned survivor of corporate turbulence. When Gerard detects a smoky scent, he alerts Scott, but the response is filled with corporate jargon, highlighting the absurdity of bureaucracy. Gerard's attempts to radio HQ reveal that their tower is on fire, yet he must fill out Form C before help can be dispatched. The gameplay includes mechanics similar to ZA/UM's RPGs, using dice rolls for interactions, and serves as a satirical commentary on bureaucracy. Developed in three days for Ludum Dare's game jam, Pyre Lookout offers humor and intrigue while critiquing modern work life. The game features whimsical elements, including bonding with a frog, and showcases the creative talent of Martyna 'Outstar' Zych, known for her work on titles like Vampire: The Masquerade.

Winsage

April 5, 2026

Scheduler function Windows breaks video recording on Radeon chips

Many users of graphics accelerators from a well-known company are experiencing technical issues, particularly when recording video content using OBS Studio. A YouTube channel creator analyzed this problem and identified hardware scheduling, a feature introduced by Microsoft in Windows, as the cause of frequent crashes and performance issues. This feature was meant to improve hardware performance by managing memory more efficiently for video cards, but it has led to conflicts when running demanding games and applications while capturing screens. The blogger recommends that Radeon graphics card owners disable hardware scheduling, as it only provides a minimal performance boost of about two percent in gaming, which does not outweigh the recording and streaming problems it causes.

AppWizard

March 19, 2026

RUSSIA Mammut virus hits Russia’s patriotic messaging app

A virus known as Mamont is targeting users of the messaging platform Max, which has 100 million registered profiles. Mamont infiltrates online banking applications and spreads primarily through family and parental chat groups, allowing cybercriminals to steal payment information. The virus often begins with a deceptive message prompting users to click, leading to the silent download of a Trojan that siphons off data. Despite claims from the Max press service that the virus's spread is exaggerated, concerns remain about the security of user data, particularly given that all communications on Max are monitored by the state. Many users resort to using a second device, referred to as Maxofon, to comply with the platform's requirements while keeping their primary device for other applications.

AppWizard

January 3, 2026

AIB ‘working to resolve’ issue affecting android banking app

AIB resolved a technical issue that affected thousands of customers using Android devices, preventing access to the bank's mobile app and online banking services. The disruption began around 4 AM, and by late afternoon, AIB confirmed that all services were operating normally. The bank provided a contact number, 0818 724 724, for customer support regarding any concerns.

Tech Optimizer

December 11, 2025

Hackers Are Targeting Windows 10 Users. Make Sure to Do This One Thing to Stay Safe

Microsoft has set the end of support for Windows 10 to October 14, 2025, after which users will not receive security updates or technical assistance. Windows 10 machines will continue to function, but users will face risks due to unaddressed security vulnerabilities. Microsoft has introduced the Extended Security Updates (ESU) program, extending support for eligible consumer editions until October 13, 2026, with specific enrollment criteria. Windows 11 installations surpassed Windows 10 in June 2025, with Windows 11 holding a 53.7% market share compared to Windows 10's 42.7%. Users can continue using Windows 10 by employing third-party security solutions, including antivirus programs and VPNs, to mitigate risks in the absence of Microsoft’s support.

Tech Optimizer

October 20, 2025

TikTok Videos Spread ClickFix Malware, Stealing User Credentials

Cybercriminals are increasingly using TikTok to spread malware through seemingly harmless videos that promise free software activations for applications like Windows, Spotify, or Netflix. These videos employ a technique called ClickFix, which tricks users into executing harmful PowerShell commands that install infostealers, compromising sensitive information such as login credentials and financial data. The malware can self-compile on the victim's device, making it harder to detect. Reports indicate a shift in these tactics from platforms like YouTube and Meta to TikTok, with over 30,000 websites compromised in related DNS malware campaigns. Artificial intelligence is also being used to create deceptive videos that resemble legitimate content, complicating the identification of malicious material. Android users face similar threats from apps impersonating popular services, such as WhatsApp or TikTok. Experts recommend enabling two-factor authentication, using reputable antivirus software, avoiding unverified commands, and adjusting privacy settings on TikTok to mitigate these risks.

Winsage

June 12, 2025

Microsoft Patched Windows Server 2025 Restart Bug that Disconnects AD Domain Controller

Microsoft has released a patch, KB5060842, on June 10, 2025, to address a vulnerability in Windows Server 2025 that affected Active Directory Domain Controllers' ability to manage network traffic after system restarts. This issue stemmed from the improper initialization of domain firewall profiles during startup, leading to service interruptions and authentication failures. The patch corrects the initialization sequence of these profiles, ensuring proper network traffic management post-restart. Organizations using Windows Server 2025 are advised to implement this update to maintain the reliability of their Active Directory services.

AppWizard

June 6, 2025

Natwest is down? Users report issues with banking app and mobile login

Reports of issues with the NatWest app emerged on DownDetector around 8:45 AM today, with many users experiencing problems primarily related to mobile banking and login functionalities. Customers reported their frustrations on X (formerly Twitter), highlighting difficulties accessing their accounts. The NatWest Help account acknowledged a technical issue affecting the app and stated that their team was addressing the situation urgently.