Cybersecurity

Syntiant Neuromorphic IC Sensor Processing Patent Application

USPTO published patent application US20260100186A1 assigned to Syntiant, covering sensor-processing systems with neuromorphic integrated circuits for keyword spotting. The application was filed December 11, 2025, with inventors Kurt F. Busch, Jeremiah H. Holleman III, Pieter Vorenkamp, Stephen W. Bailey, and David Christopher Garrett. The patent describes systems using neuromorphic ICs with neural networks to extract features from sensor data and arrive at actionable decisions for keyword spotting applications.

Distributed Training of Compressed Machine Learning Models

USPTO published patent application US20260099761A1 for an apparatus enabling distributed training of compressed machine learning models using quantization-based parameter compression. The invention manages compressed ML model parameters across distributed systems by cycling between compression and decompression states, allowing efficient parameter synchronization over networks. The application was filed on October 7, 2024.

Multi-Language Model-Based Filtering and Labeling of Datasets

The USPTO published patent application US20260100887A1 assigned to Cisco Technology, Inc. The patent covers methods for labeling telemetry data from computer network entities using a combination of N-gram models and large language models. The labeled data is then used to train predictive maintenance models for network infrastructure. The application was filed on July 28, 2025.

Cortex XSOAR Vulnerability, CVSS 8.1, 8th Apr

Cortex XSOAR Vulnerability, CVSS 8.1, 8th Apr

GitLab CE/EE Multiple Vulnerabilities CVSS 8.5 Allow Information Disclosure and Data Manipulation

CERT-Bund issued security advisory WID-SEC-2026-1010 identifying multiple vulnerabilities in GitLab CE/EE versions below 18.9.5, 18.10.3, and 18.8.9. The vulnerabilities carry a CVSS Base Score of 8.5 (high) and a CVSS Temporal Score of 7.4 (high), with remote attack capability confirmed. An attacker could exploit these flaws to disclose information, manipulate data, bypass security measures, cause denial-of-service conditions, or execute cross-site scripting attacks.

Budibase Multiple Critical Vulnerabilities Allow Root Code Execution

CERT-Bund issued security advisory WID-SEC-2026-0990 disclosing multiple critical vulnerabilities in Budibase, an open-source low-code platform. Attackers can exploit these flaws to execute arbitrary code with root privileges, escalate to administrator rights, conduct XSS attacks, manipulate data, cause denial-of-service, or disclose confidential information. CVSS Base Score is 9.6 (critical) and Temporal Score is 8.6 (high). Remote attack is possible.

Apache Tomcat and Tomcat Native Multiple Vulnerabilities, CVSS 7.3

CERT-Bund issued security advisory WID-SEC-2026-1038 identifying multiple vulnerabilities in Apache Tomcat and Tomcat Native with a CVSS Base Score of 7.3 (high). Affected versions include Apache Tomcat <9.0.117, <10.1.54, <11.0.21, and Tomcat Native <1.3.7, <2.0.14. An attacker can exploit these flaws to bypass security measures, manipulate data, disclose confidential information, and conduct open-redirect attacks.

EU AI Action Plan Reaches Major Milestones After One Year

European Commission releases one-year progress report on AI Continent Action Plan. EU reports 19 AI factories deployed across supercomputers with 13 regional antennas, Data Union Strategy and AI Omnibus launched to unlock data sharing and reduce compliance costs, and EU-India legal gateway office operational for ICT talent movement. Apply AI Strategy has €1 billion in funding earmarked for AI adoption across industrial and public sectors.

UFP Technologies Cybersecurity Incident Disclosure

UFP Technologies filed a Form 8-K with the SEC disclosing a cybersecurity incident pursuant to Regulation S-K Item 1.05. The disclosure notifies investors of a material cybersecurity event that has occurred at the company. As a public company, UFP Technologies is subject to SEC cybersecurity disclosure requirements that mandate timely reporting of material cybersecurity incidents.

Zero-Knowledge Proof Method Patent Application US20260100838A1

USPTO published patent application US20260100838A1 for a computer-implemented zero-knowledge proof method by inventor Enrique LARRAIA. The application, filed August 16, 2023 under Application No. 19114378, covers generating zero-knowledge proofs to verify knowledge of pre-image values using compression function instances across a series of nodes. The invention is classified under H04L 9/3218, H04L 9/0643, and H04L 2209/30.