Weekly cybersecurity recap covering emerging threats, fast-moving attacks, critical flaws, and key security developments you need to track this week.

Abstract: A CMA-guided machine learning (ML) optimization method is proposed to realize miniaturized patch antennas with significant size reduction in this letter. Characteristic mode analysis (CMA) ...

The Security extension is an open-source Gemini CLI extension, built to enhance your repository's security posture. The extension adds a new command to Gemini CLI that analyzes code changes to ...

CISA added Gogs CVE-2025-8110 to its Known Exploited Vulnerabilities catalog Critical symlink bypass enables unauthenticated Remote Code Execution via PutContents API Over 700 Gogs servers compromised ...

Microsoft has released the KB5073724 extended security update to fix the Patch Tuesday security updates, including 3 zero-days and a fix for expiring Secure Boot certificates. Microsoft is no longer ...

India’s proposal to require smartphone makers to share source code with the government and make several software changes as part of a raft of security measures has prompted behind-the-scenes ...

As cyberattacks grow faster, more automated and more convincing, technology alone is no longer enough to keep organizations secure. Many of today’s most damaging threats succeed not because digital ...

Cisco has released updates to address a medium-severity security flaw in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) with a public proof-of-concept (PoC) exploit. The ...

Veeam released security updates to patch multiple security flaws in its Backup & Replication software, including a critical remote code execution (RCE) vulnerability. Tracked as CVE-2025-59470, this ...