Friday Squid Blogging: “Squidbleed” Vulnerability
Schneier on Security 10.07.2026 21:07
In a rare combined cybersecurity/squid post, a twenty-nine-year-old squid proxy bug can leak HTTP requests.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Blog moderation policy.
Mit Zero-Days: BND und Verfassungsschutz sollen „Super-Geheimdienste“ werden
Heise Security 10.07.2026 17:44
Mit einem radikalen Systemwechsel im Nachrichtendienstrecht betreibt das Innenministerium die Degradierung des BSI zum Zulieferer für staatliche Cyberangriffe.
Kundendaten bei Dienstleister abgeflossen: Datenschutzvorfall beim Lidl-Shop
Heise Security 10.07.2026 14:58
Unbekannte konnten auf eine Datei mit Kundendaten zugreifen und stahlen persönliche Kundendaten. Lidl hat reagiert und betroffene Kunden angeschrieben.
EU extends mass scanning of messages without a warrant
CSO Online 10.07.2026 14:44
Members of the European Parliament (MEPs) have failed to block a proposal extending the mass scanning of private communications, a measure they have previously rejected twice.
This time too, more votes were cast against the proposal than in favor, but due to the absence of numerous MEPs on the eve of the summer recess, the motion to reject did not attain the necessary absolute majority. The proposal passed by default.
Lückenflut durch KI-Funde – Software-Hersteller schrauben an Patch-Strategien
Heise Security 10.07.2026 12:45
Wöchentliche Veröffentlichungen, Patch-Vorankündigungen und gebündelte CVEs sollen Herstellern und IT-Verantwortlichen helfen, der Update-Flut Herr zu werden.
Exposed Hacker Server Reveals WP-SHELLSTORM Backdooring Thousands of WordPress Sites
The Hacker News 10.07.2026 11:30
A cybercrime crew left one of its own servers wide open on the internet for three weeks, and it exposed the operation's inner workings: the hacking tools, the activity logs, and target lists naming more than 1.4 million websites.
Far fewer were actually broken into, but the exposed files showed researchers how a mass site-hacking operation runs from the inside.
The operation, now tracked as
Ghostlock: 15 Jahre alte Root-Lücke im Linux-Kernel aufgedeckt
Golem 10.07.2026 10:59
Seit Version 2.6.39 von 2011 klafft im Linux-Kernel eine gefährliche Root-Lücke. Es gibt zwar einen Patch, doch der ist noch längst nicht überall angekommen. (Sicherheitslücke, Ubuntu)
Study of 281 Free Android VPN Apps Finds Traffic Leaks, Unencrypted Data, and Tracking
The Hacker News 10.07.2026 10:56
Researchers ran 281 of the most popular free VPN apps on the Google Play Store through a new testing system and found that many fail at the basics people install a VPN for, i.e., keeping their traffic private and secure.
The apps flagged with at least one problem have been installed more than 2.4 billion times.
The problems are basic, not sophisticated. 29 apps let user traffic leak outside
Microsoft Warns of Increase in Number of Security Updates
Infosecurity Magazine 10.07.2026 09:33
Microsoft has said the volume of Windows security updates is set to grow as it uses AI to find new bugs
Microsoft uncovers GigaWiper, a backdoor designed for destruction on demand
CSO Online 10.07.2026 08:56
Microsoft is warning defenders about a new backdoor that blurs the line between espionage malware and wipers.
In a technical analysis published on Thursday, Microsoft Threat Intelligence detailed GigaWiper, a Golang-based implant first observed in October 2025 intrusions that combines remote administration capabilities with multiple disk-wiping and ransomware routines.