validation Archives

Tech Optimizer

August 21, 2025

pgEdge Announces Launch of pgEdge Platform v25

pgEdge, Inc. has released pgEdge Platform v25, an open-source distributed Postgres solution aligned with standard PostgreSQL. Key features include: - True Zero Downtime for Node Addition and PostgreSQL Upgrades, allowing seamless integration of new nodes and rolling upgrades without downtime. - Expanded Automatic Conflict Resolution for various scenarios, such as transforming duplicate inserts into updates and resolving non-existent row deletions. - Improved Performance with in-memory exception handling and accurate lag tracking. - An Interactive Installation process for easier setup and configuration. - Backup & Restore Strategy with pgBackrest integration for simplified backup processes. - Enhancements to the Active Consistency Engine (ACE) for better data consistency validation and repair in large datasets. pgEdge Platform v25 is available for free download.

Tech Optimizer

August 18, 2025

Critical PostgreSQL Flaws Allow Code Injection During Restoration

The PostgreSQL Global Development Group released emergency security updates on August 14, 2025, to address three critical vulnerabilities affecting PostgreSQL versions 13 through 17. The vulnerabilities include: 1. CVE-2025-8714: Allows arbitrary OS code execution via pg_dump meta-commands, with a CVSS score of 8.8. 2. CVE-2025-8715: Facilitates code/SQL injection through improper newline handling in object names, also with a CVSS score of 8.8. 3. CVE-2025-8713: Exposes sensitive data via optimizer statistics, with a CVSS score of 3.1. Organizations are advised to upgrade to PostgreSQL versions 17.6, 16.10, 15.14, 14.19, or 13.22 immediately. Cloud providers have begun emergency fleet updates, and development teams should audit their CI/CD pipelines for pg_dump usage. The vulnerabilities were disclosed responsibly by several individuals, and PostgreSQL 13 will reach its end-of-life on November 13, 2025.

Tech Optimizer

August 15, 2025

Wiz Achieves Near-Zero Downtime for Amazon Aurora PostgreSQL Major Version Upgrades with Aurora Blue/Green Deployments

Wiz has transitioned its Amazon Aurora PostgreSQL database from version 14 to version 16 with near-zero downtime using Aurora Blue/Green Deployments. The upgrade process is facilitated by the DB Upgrade Pilot, which features an automated eight-step flow, including automated validation steps, enhanced synchronization monitoring, and end-to-end orchestration. This has reduced the downtime for database upgrades from one hour to 30 seconds.

Winsage

August 13, 2025

MS sells cloud VMs for when Windows 11 inevitably breaks

Microsoft has launched Windows 365 Reserve, a service that allows organizations to transition users to temporary virtual machines (VMs) in the cloud during device failures. This service provides employees with access to a secure Cloud PC for up to 10 days, minimizing downtime. The cloud-hosted VMs can be managed through Microsoft Intune, but accessing them requires a secondary device with a web browser or the Windows App. Scaling may be a challenge, as multiple simultaneous users could face resource limitations due to Azure capacity constraints. Applications for the gated beta are open to Microsoft customers, MVPs, or partners with specific licensing requirements, and successful applicants will receive complimentary access for up to 12 weeks.

Tech Optimizer

August 12, 2025

How Wiz achieved near-zero downtime for Amazon Aurora PostgreSQL major version upgrades at scale using Aurora Blue/Green Deployments

Wiz upgraded its Aurora PostgreSQL database from version 14 to 16, achieving a significant reduction in downtime from approximately one hour to just 30 seconds. The upgrade was facilitated by an automated process called DB Upgrade Pilot, which utilized Amazon Aurora's Blue/Green Deployments. This process involved several steps: taking a cluster snapshot, provisioning a synchronized replica of the production database, executing a VACUUM ANALYZE for performance optimization, monitoring replication lag, and performing a switchover to the new environment. The upgrade included performance enhancements such as improved parallel query execution and faster aggregations, along with enhanced security features. The solution also incorporated safety measures like automatic rollback capability and robust validation steps to ensure a stable upgrade process.

Winsage

August 11, 2025

New ‘Win-DoS’ Zero-Click Vulnerabilities Turns Windows Servers/Endpoints, Domain Controllers Into DDoS Botnet

Researchers Yair and Shahak Morag from SafeBreach Labs introduced a new category of denial-of-service (DoS) attacks called the “Win-DoS Epidemic” at DEF CON 33. They identified four new vulnerabilities in Windows DoS and one zero-click distributed denial-of-service (DDoS) flaw, classified as “uncontrolled resource consumption.” The vulnerabilities include: - CVE-2025-26673 (CVSS 7.5): High-severity DoS vulnerability in Windows LDAP. - CVE-2025-32724 (CVSS 7.5): High-severity DoS vulnerability in Windows LSASS. - CVE-2025-49716 (CVSS 7.5): High-severity DoS vulnerability in Windows Netlogon. - CVE-2025-49722 (CVSS 5.7): Medium-severity DoS vulnerability in Windows Print Spooler, requiring an authenticated attacker on an adjacent network. These vulnerabilities can incapacitate Windows endpoints or servers, including Domain Controllers (DCs), potentially allowing for the creation of a DDoS botnet. The researchers also discovered a DDoS technique called Win-DDoS that exploits a flaw in the Windows LDAP client’s referral process, enabling attackers to redirect DCs to a victim server for continuous redirection. This method can leverage public DCs globally, creating a large, untraceable DDoS botnet without specialized infrastructure. Additionally, the researchers examined the Remote Procedure Call (RPC) protocol and found three new zero-click, unauthenticated DoS vulnerabilities that can crash any Windows system. They also identified another DoS flaw exploitable by any authenticated user on the network. The researchers released tools named “Win-DoS Epidemic” to exploit these vulnerabilities, highlighting the need for organizations to reassess their security measures regarding internal systems and services like DCs.

Winsage

August 6, 2025

OpenAI open weight models now available on AWS

AWS has introduced two new OpenAI models with open weights, the gpt-oss-120b and gpt-oss-20b, available through Amazon Bedrock and Amazon SageMaker JumpStart. These models are designed for text generation and reasoning tasks, excelling in coding, scientific analysis, and mathematical reasoning, with performance comparable to leading alternatives. They support a context window of 128K and adjustable reasoning levels (low, medium, high). Users can access these models via an OpenAI-compatible endpoint in Bedrock, utilizing the OpenAI SDK or Bedrock APIs for integration. To access the models in Amazon Bedrock, users must request access through the console and can evaluate them using the Chat/Test playground. The process for using the OpenAI SDK involves configuring the API endpoint and authentication with an Amazon Bedrock API key. Users can build AI agents using frameworks that support the Amazon Bedrock API or OpenAI API, with deployment facilitated by Amazon Bedrock AgentCore. The OpenAI models are available in the US West (Oregon) region through Amazon Bedrock and in the US East (Ohio, N. Virginia) and Asia Pacific (Mumbai, Tokyo) regions via SageMaker JumpStart. Each model provides full chain-of-thought output capabilities for enhanced interpretability. They can be modified and customized to meet specific needs, and security measures are in place to ensure robust evaluation processes. Compatibility with the standard GPT-4 tokenizer is also included. For cost details, users can refer to the Amazon Bedrock and SageMaker AI pricing pages.

Tech Optimizer

August 4, 2025

Zero-Day Flaw in PostgreSQL Exploited to Target BeyondTrust Systems

A significant PostgreSQL vulnerability, CVE-2025–1094, was identified during the investigation of another vulnerability, CVE-2024–12356, which was exploited in the BeyondTrust breach in December 2024. The breach involved unauthorized access to BeyondTrust's systems and was linked to the state-sponsored hacking group Silk Typhoon from China. The U.S. Treasury Department confirmed its network was compromised through a stolen BeyondTrust API key. CVE-2025–1094 is an SQL injection vulnerability that allows attackers to execute arbitrary SQL commands due to improper handling of invalid UTF-8 byte sequences. Rapid7 found that CVE-2024–12356's exploitation relied on CVE-2025–1094, and that CVE-2025–1094 could be exploited independently. BeyondTrust issued patches for these vulnerabilities, but the patch for CVE-2024–12356 did not directly address the underlying cause of CVE-2025–1094. The exploitation of these vulnerabilities underscores the need for timely patching and proactive security measures in organizations using PostgreSQL.

AppWizard

July 29, 2025

ANDROID MALWARE POSING AS INDIAN BANK APPS

The report discusses a sophisticated Android malware targeting users in India, which disguises itself as legitimate banking applications to steal credentials and conduct unauthorized financial activities. The malware employs advanced techniques such as silent installation, exploitation of Android permissions, and remote command execution to avoid detection. It utilizes Firebase for command-and-control operations and phishing pages that mimic real banking interfaces. The malware consists of a modular architecture with a dropper and a main payload. The dropper requests several Android permissions, including ACCESSNETWORKSTATE, REQUESTINSTALLPACKAGES, and QUERYALLPACKAGES, which facilitate reconnaissance and persistence. The dropper uses a silent installation mechanism to load additional payloads without user awareness. The main payload requests permissions that enable data theft and stealthy operation, such as READSMS, SENDSMS, and RECEIVEBOOTCOMPLETED. It hides itself from the user's app list and employs separate classes for specific malicious tasks, including harvesting user credentials and collecting debit card information. The phishing page mimics a legitimate banking app to capture user data effectively. The malware also monitors incoming SMS messages, extracts critical metadata, and can silently forward calls to an attacker-controlled number. A specific APK sample impersonating an Indian banking application was observed on April 3, 2025, highlighting ongoing trends in mobile-based credential theft and financial fraud. Recommendations include enforcing stricter mobile application security standards, launching public awareness campaigns, implementing threat intelligence-driven filtering, and deploying mobile endpoint detection solutions.

AppWizard

July 28, 2025

EU Age Verification App to Ban Android Apps Not Licensed by Google

The European Union is enhancing its age verification system for social media by incorporating an Android app integrity check to ensure users are 18 or older before accessing adult content. This involves a white-label application to authenticate the legitimacy of the age verification app, which must be licensed by Google and downloaded from the Google Play Store. Users of custom ROMs may face restrictions, as the integrity check will not allow sideloaded or self-compiled applications. The age verification framework is still in planning, but the EU assures that user data will remain private and not monitored after verification.