The Breach News

Hackers Exploit Zero-Day Vulnerability to Steal Access Tokens from 50 Million Facebook Users

Facebook has recently acknowledged a significant security breach exposing over 50 million user accounts to potential exploitation. Hackers utilized a zero-day vulnerability within the platform, specifically targeting the “View As” feature. This feature allows users to see how their profile appears to others. The security flaw enabled attackers to extract…

Read MoreHackers Exploit Zero-Day Vulnerability to Steal Access Tokens from 50 Million Facebook Users

US Military Cyber Budget Soars to $15 Billion in 2026 NDAA

Defense Bill Enhances Cybersecurity Authorities, Technology Adoption, and Talent Development Chris Riotta (@chrisriotta) • December 12, 2025 Image: Ivan Cholakov/Shutterstock U.S. federal legislators are set to increase funding for military cybersecurity, following significant budget reductions to civilian cyber units and government IT departments over the past year. This move comes…

Read MoreUS Military Cyber Budget Soars to $15 Billion in 2026 NDAA

Deadline Approaches for AT&T Data Breach Settlement: How to File a Claim in the $177 Million Case – AOL.com

Deadline Approaches for AT&T Data Breach Settlement: Steps to File a Claim A significant development in the cybersecurity landscape is the impending deadline for filing claims related to the AT&T data breach settlement. In this case, AT&T has agreed to a settlement of $177 million, a resolution for those affected…

Read MoreDeadline Approaches for AT&T Data Breach Settlement: How to File a Claim in the $177 Million Case – AOL.com

GitHub Changes Keys Following Serious Vulnerability That Exposed Credentials

GitHub has confirmed the rotation of specific cryptographic keys following the identification of a significant security vulnerability. This issue poses the risk of unauthorized access to sensitive credentials within production containers. The subsidiary of Microsoft announced that it first learned of the problem on December 26, 2023, and took immediate…

Read MoreGitHub Changes Keys Following Serious Vulnerability That Exposed Credentials

Fieldtex and TriZetto Uncover Recent Healthcare Data Breaches

Data Breach Notification, Data Security, Healthcare Recent Cyber Incidents Affecting HIPAA Business Associates Marianne Kolbasuk McGee (HealthInfoSec) • December 12, 2025  Fieldtex Products, a medical supply vendor, has reported hacks affecting patient information. (Image: Fieldtex) Fieldtex Products, a medical supply fulfillment company based in Rochester, New York, has disclosed a…

Read MoreFieldtex and TriZetto Uncover Recent Healthcare Data Breaches

Unauthorized Access

Cybersecurity Incident: Data Breach at Jaguar Land Rover In a significant cybersecurity incident, Jaguar Land Rover has confirmed that sensitive employee pay data has been compromised due to a cyber-attack. This unauthorized access raises concerns regarding personal information security within the organization and highlights the broader vulnerabilities that businesses face…

Read MoreUnauthorized Access

PixieFail UEFI Vulnerabilities Put Millions of Computers at Risk of RCE, DoS, and Data Theft

Recent vulnerabilities have emerged in the TCP/IP network protocol stack of the open-source reference implementation of the Unified Extensible Firmware Interface (UEFI), which plays a critical role in modern computing systems. Dubbed PixieFail by researchers at Quarkslab, these vulnerabilities involve nine distinct security issues found in the TianoCore EFI Development…

Read MorePixieFail UEFI Vulnerabilities Put Millions of Computers at Risk of RCE, DoS, and Data Theft