Friday Squid Blogging: New Vulnerability in Squid HTTP Proxy Server
In a rare squid/security combined post, a new vulnerability was discovered in the Squid HTTP proxy server.
Uncategorized
Google Project Zero Changes Its Disclosure Policy
Google’s vulnerability finding team is again pushing the envelope of responsible disclosure:
Google’s Project Zero team will retain its existing 90+30 policy regarding vulnerability disclosures, in which it provides vendors with 90 days before full disclosure takes place, with a 30-day period allowed for patch adoption if the bug is fixed before the deadline.
However, as of July 29, Project Zero will also release limited details about any discovery they make within one week of vendor disclosure. This information will encompass:
- The vendor or open-source project that received the report
…
China Accuses Nvidia of Putting Backdoors into Their Chips
The government of China has accused Nvidia of inserting a backdoor into their H20 chips:
China’s cyber regulator on Thursday said it had held a meeting with Nvidia over what it called “serious security issues” with the company’s…
Complete Protection Guide for Cybersecurity in Energy and Utilities
In May 2023, hackers struck 22 Danish energy companies simultaneously. The coordinated attack breached Denmark’s critical infrastructure in just days, potentially linked to Russia’s Sandworm group. Attackers exploited firewall vulnerabiliti…
Your Protection Guide for Cybersecurity in Retail and Ecommerce
It’s surely the biggest fear of any e-commerce site manager. You try logging into your CRM, CMS or inventory management system one morning, only to be greeted by a ransomware note: “Your system has been locked. Pay into this crypto wallet to release y…
The Semiconductor Industry and Regulatory Compliance
Earlier this week, the Trump administration narrowed export controls on advanced semiconductors ahead of US-China trade negotiations. The administration is increasingly relying on export licenses to allow American semiconductor firms to sell their products to Chinese customers, while keeping the most powerful of them out of the hands of our military adversaries. These are the chips that power the artificial intelligence research fueling China’s technological rise, as well as the advanced military equipment underpinning Russia’s invasion of Ukraine…
All About Lieutenant Colonel RK Singh – Accused of Assaulting SpiceJet Employees at Srinagar Airport
SSBToSuccess is the sole owner of this content.
On July 26, 2025, a Lieutenant Colonel of the Indian Army, posted at the High Altitude Warfare School in Gulmarg, allegedly assaulted four SpiceJet employees at Srinagar Airport following a dispute over e…
Surveilling Your Children with AirTags
Skechers is making a line of kid’s shoes with a hidden compartment for an AirTag.
GMTI Satellites to Launch in Next Year, Preceding AMTI for Space Force, Service Says
The U.S. Space Force plans to launch ground moving target indicator (GMTI) satellites in the next year for U.S. Indo-Pacific Command and then expand GMTI to other combatant commands, but, […]
First Sentencing in Scheme to Help North Koreans Infiltrate US Companies
An Arizona woman was sentenced to eight-and-a-half years in prison for her role helping North Korean workers infiltrate US companies by pretending to be US workers.
From an article:
According to court documents, Chapman hosted the North Korean IT workers’ computers in her own home between October 2020 and October 2023, creating a so-called “laptop farm” which was used to make it appear as though the devices were located in the United States.
The North Koreans were hired as remote software and application developers with multiple Fortune 500 companies, including an aerospace and defense company, a major television network, a Silicon Valley technology company, and a high-profile company…