utilities Archives

AppWizard

August 26, 2025

77 Malicious Android Apps With 19M Installs Targeted 831 Banks Worldwide

Zscaler’s ThreatLabz team identified 77 malicious applications on the Google Play Store with over 19 million installations, which target financial institutions and compromise user data. A new variant of the Anatsa banking trojan, also known as TeaBot, now targets over 831 banks globally, up from 650, and has expanded its reach to countries like Germany and South Korea. Many of these apps disguise themselves as document readers, with some exceeding 50,000 downloads. The malware downloads the Anatsa payload after installation and uses Android’s Accessibility Services to automate malicious activities, including stealing financial information and facilitating fraudulent transactions. The malware employs techniques to evade detection, such as obfuscating its code and using corrupted ZIP archives. The most prevalent Android malware identified was Joker, found in nearly 25% of the analyzed applications, known for stealing contacts and device data. A smaller subset of apps contained “maskware,” which engages in credential theft and personal data collection.

AppWizard

August 26, 2025

Dangerous Android banking trojan found lurking in malicious apps with 19 million installs — don’t fall for this

Zscaler’s ThreatLabs team discovered 77 malicious applications on the Google Play Store that accumulated 19 million downloads. These apps, disguised as utilities like PDF readers and flashlight tools, used fake reviews and misleading ads to attract users. Upon installation, they would download a malicious payload, including the Anatsa banking trojan, which overlays fake login screens to steal user credentials. Additionally, the Joker malware was found in 25% of these apps, capable of taking screenshots, accessing device information, and signing users up for premium services without consent. Users are advised to limit app installations, scrutinize reviews, activate Google Play Protect, and consider antivirus applications for enhanced security against malware.

Winsage

August 24, 2025

Who should consider Windows PowerToys?

Windows PowerToys is a collection of utilities for the Windows operating system, originally created for power users in the Windows 95 era and revived as an open-source project in 2019 for Windows 10 and 11. It is actively maintained by Microsoft engineers and volunteers. Key features include: - FancyZones: A window manager for creating custom snap layouts. - PowerToys Run: A launcher for quickly opening applications and files. - Keyboard Manager: Allows remapping of keys and creation of new shortcuts. - Text Extractor: Enables copying text from images or on-screen elements. - Mouse Utilities: Includes cursor highlighting and keyboard control of the mouse. PowerToys also offers File Explorer add-ons, a Color Picker, and utilities for batch renaming or resizing files. It is beneficial for users looking to streamline tasks and customize their systems, but may not be necessary for those engaged in basic computer activities. There may be a learning curve and occasional bugs due to its open-source nature.

Tech Optimizer

August 23, 2025

How to load test PostgreSQL database and not miss anything

Practitioners face challenges during load testing of Tantor Postgres databases using pgbench, primarily due to insufficient documentation of the testing environment, leading to non-representative results and the need for repeated tests. The pg_perfbench tool has been developed to address these issues by ensuring repeatability, safeguarding data, and simplifying result comparisons through a cohesive template. It automates pgbench execution, collects metadata about the testing environment, and generates structured reports. pgbench operates on a TPC-B model, providing performance metrics such as transactions per second (tps), average latency, and the number of processed and failed transactions. A Bash script can be used to automate pgbench tests with varying client numbers, logging results into separate files. The pg_perfbench tool captures extensive data regarding the database environment and generates reports that include system properties, common database information, benchmark details, and test results. It facilitates the comparison of multiple load test results and ensures that environments being compared are consistent in terms of PostgreSQL versions and system parameters. The tool also allows for the evaluation of performance impacts from changes to PostgreSQL settings by generating separate reports for different configurations. It verifies compliance of specified parameters before joining reports, ensuring accurate comparisons. The final reports are structured in JSON and HTML formats, enhancing analysis and collaboration efforts.

Winsage

August 22, 2025

Microsoft is bringing PC gaming apps and stores to its Xbox app on Windows

Microsoft is piloting a feature called “My apps” within its Xbox app for PC gamers, designed to streamline access to third-party applications like web browsers and gaming utilities. This feature introduces a dedicated tab in the Xbox PC app’s library, allowing users to locate, view, and download essential applications easily. Previously, Microsoft integrated platforms such as Steam and Battle.net into the Xbox app. The “My apps” feature is particularly useful for handheld PC users, enabling easier navigation between applications. Users have tested the feature and found familiar applications like Battle.net, Chrome, and GOG Galaxy listed. Currently, Microsoft is testing a curated selection of applications and plans to expand support for more in the future, aiming to position the Xbox app as a central hub for PC gaming.

TrendTechie

August 18, 2025

Медиа-сервер на основе Telegram-бота / Питонист пробует Go

The project involved creating a Telegram bot to streamline the process of downloading and viewing movies in a home theater setup. The bot integrates with DLNA technology, allowing films to be played on various devices within a home network. Key functionalities include downloading films from torrents and streaming sites, automatic re-encoding for compatibility with older televisions, download monitoring, file management, and a role-based access system. The bot supports multiple languages and can issue temporary access for guests. Initially developed in Python, the bot was later rewritten in Go for better performance and compatibility across hardware platforms. It requires at least 1 GB of RAM and a Linux operating system to function effectively. The source code is available on GitHub.

Tech Optimizer

August 18, 2025

Critical PostgreSQL Vulnerabilities Allow Arbitrary Code Execution During Backup Restoration

The PostgreSQL Global Development Group has released security and maintenance updates for versions 17.6, 16.10, 15.14, 14.19, 13.22, and the third beta of PostgreSQL 18. The updates address three critical vulnerabilities: 1. CVE-2025-8714 (CVSS 8.8) - Allows code injection during dump restoration via pg_dump operations. 2. CVE-2025-8715 (CVSS 8.8) - Enables SQL injection through newline injection in object names during pg_dump. 3. CVE-2025-8713 (CVSS 3.1) - Exposes optimizer statistics data. The update also improves BRIN index performance, logical replication, and resolves WAL segment removal issues. PostgreSQL 13 will reach end-of-life on November 13, 2025. The third beta of PostgreSQL 18 is in development, with general availability expected in September-October 2025. Administrators should perform reindexing after the upgrade if using specific BRIN indexes.

Winsage

August 18, 2025

Microsoft finally fixes Windows 11’s broken Dark mode after nearly a decade – The Times of India

Microsoft is updating dark mode in Windows 11 to address inconsistencies that have persisted since 2016. Recent preview build 26100.5061 shows dark themes applied to file operation dialogs, which previously remained bright. While the window backgrounds are now dark gray, some buttons still appear lighter, indicating ongoing work. The updates may be included in the Windows 11 25H2 update later this year. Despite the improvements, other legacy interface elements like the Registry Editor and Group Policy windows still need to be addressed for a consistent dark mode experience.

Tech Optimizer

August 18, 2025

Critical PostgreSQL Vulnerabilities Allow Arbitrary Code Injection During Restoration

The PostgreSQL Global Development Group has released emergency security updates for versions 13 through 17 to address three critical vulnerabilities that could allow attackers to execute arbitrary code during database restoration processes. The vulnerabilities are tracked as CVE-2025-8714, CVE-2025-8715, and CVE-2025-8713, with CVE-2025-8714 and CVE-2025-8715 both rated with a CVSS score of 8.8. CVE-2025-8714 allows malicious superusers to inject arbitrary code during restoration via the pg_dump utility, while CVE-2025-8715 exploits improper neutralization of newlines in object names to trigger code execution. CVE-2025-8713, with a CVSS score of 3.1, permits unauthorized access to restricted data within optimizer statistics. The fixed PostgreSQL versions are 17.6, 16.10, 15.14, 14.19, and 13.22, released on August 14, 2025. Organizations are advised to upgrade immediately and implement strict access controls.

AppWizard

August 13, 2025

Mount Laurel man accused of sexually assaulting girl he met on messaging app

A 25-year-old man from Mount Laurel, New Jersey, named Jake Toczylowski, is in police custody facing serious allegations of sexual assault involving an underage girl. He reportedly met the victim through a messaging app and arranged an in-person meeting, during which the incident occurred in his parked vehicle. Toczylowski was previously employed by the Mount Laurel Township Municipal Utilities Authority, a position now under scrutiny due to the investigation.