Conduent Data Breach: A Deep Dive into the Widespread Impact

Conduent, a leading business services provider, recently experienced a significant data incident with far-reaching consequences. The company supports organizations with services like printing, payment integrity, document processing, and back-office support, meaning this cyberattack impacted a wide range of entities beyond Conduent itself.

Timeline of the Incident

On January 13, 2025, Conduent discovered a cyber incident affecting part of its network. Immediately, the organization secured its networks and launched an investigation with the help of third-party forensic experts. The investigation revealed that an unauthorized party gained access to Conduent’s systems between October 21, 2024, and January 13, 2025. During this period, files associated with various clients were compromised.

Conduent acknowledges the complexity of the data involved and is currently analyzing it to determine the specific data elements potentially compromised for each client. The ransomware group Safepay has claimed responsibility for the attack.

Growing List of Affected Clients

Currently, there’s no evidence suggesting the stolen information has been misused. However, the list of affected clients in the United States continues to grow as more information emerges. While a complete list hasn’t been released, several organizations have publicly acknowledged being impacted.

Notable Affected Organizations

• Blue Cross Blue Shield of Montana (BCBSMT): Notified in January 2025, BCBSMT waited nine months to inform affected individuals. State regulators are investigating whether BCBSMT complied with data breach notification laws, which require timely notifications. A public hearing was held on January 22, 2026, despite BCBSMT’s attempt to block it with a temporary restraining order.
• Volvo Group North America (VGNA): VGNA recently reported an indirect data breach linked to the Conduent incident, exposing data of approximately 17,000 customers and staff. This follows a separate breach involving another third-party provider, Miljödata.

Investigations Launched

The Office of the Attorney General of Texas is investigating both Conduent and Blue Cross Blue Shield of Texas (BCBSTX). Attorney General Ken Paxton is seeking documents and information to verify BCBSTX’s compliance with state law and to understand Conduent’s security measures and communications. Attorney General Paxton stated, “The Conduent data breach was likely the largest breach in U.S. history…Texans deserve to know that their private health information is being handled responsibly.”

Conduent’s Response

Conduent released the following statement to Security magazine:

“From the outset of this incident, we acted promptly and in alignment with incident response protocols to contain and investigate the issue. We engaged leading third party cybersecurity experts, disclosed the incident through an 8-K filing, notified clients and relevant authorities, and worked to support those impacted by the event, including most recently sending notifications on clients’ behalf. To date, there is no evidence that any underlying data has been misused, posted, or made publicly available, and we continue to monitor closely. We look forward to working cooperatively with the Texas Attorney General’s Office to provide the relevant information, consistent with our longstanding practice of constructive engagement with regulators.”

The full extent of the impact remains unknown, but this breach is expected to rank among the largest in U.S. history. For more information on data breach prevention, consider resources from the National Institute of Standards and Technology (NIST).