Massive Conduent Data Breach Exposes Personal Data of Over 25 Million Americans
A January 2025 ransomware attack on government technology contractor Conduent has compromised the personal data of at least 25.9 million individuals across the U.S., far exceeding initial estimates. The breach, which disrupted the company’s operations for days, has now been confirmed to impact 15.4 million people in Texas nearly half the state’s population up from the 4 million initially reported in October. An additional 10.5 million Oregonians are affected, along with hundreds of thousands in Delaware, Massachusetts, New Hampshire, and other states.
The stolen data includes names, Social Security numbers, medical records, and health insurance information, exposing victims to potential identity theft and fraud. Conduent, a major government contractor serving over 100 million Americans through healthcare and administrative programs, has provided limited details about the incident. The company disclosed the attack in April 2025, months after hackers infiltrated its systems, causing outages in government services nationwide.
The Safeway ransomware gang claimed responsibility, alleging they exfiltrated 8 terabytes of data. In an SEC filing, Conduent acknowledged the breach involved "a significant number of individuals’ personal information" tied to its corporate and government clients. While the company is still analyzing the scope of the breach, it expects to complete notifications to affected individuals by early 2026, though no precise timeline has been provided.
Conduent has not confirmed whether the breach affects more than 100 million people, despite its vast user base. The company has yet to disclose how many breach notifications it has sent or provide further details on the attack’s origins. The incident underscores the growing risk of ransomware targeting critical infrastructure and third-party vendors handling sensitive data.
Conduent cybersecurity rating report: https://www.rankiteo.com/company/conduent
"id": "CON1770309774",
"linkid": "conduent",
"type": "Ransomware",
"date": "1/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': '25.9 million individuals',
'industry': 'Healthcare and administrative services',
'location': 'U.S.',
'name': 'Conduent',
'size': 'Serves over 100 million Americans',
'type': 'Government technology contractor'}],
'customer_advisories': 'Notifications expected by early 2026',
'data_breach': {'data_exfiltration': '8 terabytes',
'number_of_records_exposed': '25.9 million individuals',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security numbers',
'Medical records',
'Health insurance information']},
'date_detected': '2025-01',
'date_publicly_disclosed': '2025-04',
'description': 'A January 2025 ransomware attack on government technology '
'contractor Conduent has compromised the personal data of at '
'least 25.9 million individuals across the U.S. The breach '
'disrupted the company’s operations for days and includes '
'names, Social Security numbers, medical records, and health '
'insurance information, exposing victims to potential identity '
'theft and fraud. The Safeway ransomware gang claimed '
'responsibility, alleging they exfiltrated 8 terabytes of '
'data.',
'impact': {'data_compromised': '8 terabytes',
'downtime': 'days',
'identity_theft_risk': 'High',
'operational_impact': 'Disrupted government services nationwide'},
'investigation_status': 'Ongoing',
'ransomware': {'data_exfiltration': '8 terabytes'},
'references': [{'source': 'SEC filing'}],
'response': {'communication_strategy': 'Limited details disclosed; '
'notifications expected by early 2026'},
'threat_actor': 'Safeway ransomware gang',
'title': 'Massive Conduent Data Breach Exposes Personal Data of Over 25 '
'Million Americans',
'type': 'Ransomware'}