- The Conduent breach exposed data from over 10 million people, including sensitive health and identity information
- The attack lasted almost three months; The SafePay ransomware group claimed responsibility
- Systems were restored and secured; law enforcement and affected states were notified
Conduent has confirmed losing sensitive customer data in a January 2025 cyber attack, with as many as 10 million people possibly affected.
The company, which helps organizations automate and manage operations at scale, has filed data breach notifications with several US state attorneys general’ offices detailing the incident.
“On January 13, 2025, we discovered that we were the victim of a cyber incident that affected a limited portion of our network,” the announcement reads. “Our investigation determined that an unauthorized third party accessed our environment from October 21, 2024 to January 13, 2025, and obtained some files.”
SafePay claims the attack
Examining data,The record claims that the threat actors stole the data of more than 10 million people.
Conduent is a large government contractor that apparently works with more than 600 government entities globally, including those at the state, local and federal levels.
It also serves a majority of Fortune 100 companies and handles transport and payment systems at scale. In fact, it claims to support “6 of the 10 largest US toll systems” via toll transaction processing infrastructure.
The information stolen varies from state to state and from person to person. The record says that in Texas, more than 400,000 people were affected if their Social Security Numbers (SSN), medical information and health insurance data were all exposed.
People were also exposed in Washington (76,000), South Carolina (48,000) and New Hampshire (10,000).
“When we discovered the incident, we safely restored our systems and operations and notified law enforcement,” the company said. “This compromise was quickly contained and our technology environment is currently considered free of known malicious activity as confirmed by our third-party security experts.”
A ransomware operation known as SafePay claimed responsibility for this attack, saying it stole 8.5 TB of data. SafePay is not as popular as LockBit or RansomHub, but it hit a few prominent names, including Ingram Micro.
Via The record
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
