Conduent Data Breach Becomes the Largest Data Breach in U.S. History

Conduent Data Breach Becomes the Largest Data Breach in U.S. History

Conduent Business Services confirmed a massive breach affecting over 25 million individuals, one of the largest in U.S. history. The Safepay ransomware group allegedly stole 8 terabytes of data, including Social Security numbers and medical records, after maintaining network access for three months. Because Conduent manages essential public services such as Medicaid, child support, food assistance, and electronic toll collection for numerous U.S. states, the breach has affected a vast cross-section of the population. While Conduent data breach was contained in early 2025, millions of notification letters were only recently dispatched. Investigations are ongoing as the company faces $25 million in response costs. In the wake of the incident, Conduent is facing severe backlash and legal consequences. Critics have slammed the company for its significant delay in notifying victims, as it waited nearly nine months after the breach began to send out some notifications.

Source: Cyber Security News, TechCrunch

PayPal Data Breach Exposes Sensitive Information

PayPal has confirmed a data protection incident affecting its PayPal Working Capital (PPWC) loan application.  It exposed the sensitive information of approximately 100 customers for nearly six months. The breach, caused by an internal software coding error rather than a direct hack, exposed names, addresses, Social Security numbers, and dates of birth between July 2025 and December 2025. PayPal confirmed that a small number of victims suffered actual financial theft, for which the company has issued full refunds. In response, PayPal has forcibly reset passwords for all impacted accounts and is providing two years of free credit monitoring.

Source: Bleeping Computer

Anthropic Launches Claude Code Security 

Anthropic has launched Claude Code Security, a new AI-powered vulnerability scanning tool for its Claude Code interface. Claude Code Security is currently available in a limited research preview for Enterprise and Team customers. Unlike traditional analysis tools that rely on predefined rules, Claude Code Security functions like a human researcher by reasoning through codebases, tracing data flows, and identifying complex logic flaws. The system uses a multi-stage verification process to filter out false positives and provides suggested patches for human review.

Source: The Hacker News

Optimizely Confirms Data Breach From Vishing Attack

The ad tech company Optimizely has confirmed a data breach following a sophisticated voice phishing attack on February 11, 2026. Threat actors gained access to internal business systems, including CRM records and back-office documents, exfiltrating basic business contact information. While Optimizely stated that no highly sensitive information was accessed and no backdoors were created, the company is warning its 10,000+ customers to stay alert for follow-up phishing attempts.

Source: Bleeping Computer

French Bank Accounts Exposed in Breach

The French Ministry of Economy and Finance has confirmed that a data breach involving the FICOBA national registry has exposed the personal information of 1.2 million bank account holders. The incident occurred in late January 2026. French bank breach was traced to the use of stolen credentials belonging to a government official. While the stolen data includes names, addresses, and IBANs, authorities clarified that account balances and transaction capabilities remain secure. The breach has been reported to the CNIL, and affected individuals are being warned to stay alert for targeted phishing and fraudulent direct debit attempts.

Source: Security Week

Click here to subscribe our Newsletter