Conduent data breach exposed 25 million Americans – including half of Texas

Core Insights - A massive data breach at Conduent has affected at least 25 million Americans, including approximately half of Texas' population, exposing sensitive information such as Social Security numbers and health insurance data [1][4] - The breach, which began in October 2024 and was discovered on January 13, 2025, has led to significant litigation against Conduent for failing to protect sensitive data and delaying notification to victims [5][6] Data Breach Details - Texas revised its estimate of affected individuals from 4 million to 15.4 million, marking a 285% increase, while Oregon estimates around 10.5 million individuals may have been impacted [4] - Other states, including Delaware, Massachusetts, and New Hampshire, also report hundreds of thousands of affected individuals [5] Legal and Financial Implications - A plaintiffs' steering committee was appointed to oversee the litigation, which could result in substantial damages and regulatory penalties for Conduent [6] - Conduent operates critical backend systems for state governments, processing over 500 million Medicaid claims annually and disbursing tens of billions of dollars in public benefits [7] Ransomware Attack Specifics - The attack was executed by the SafePay ransomware group, which claimed responsibility and reportedly siphoned approximately 8.5 terabytes of data from Conduent [7][11] - SafePay has threatened to publish the stolen data unless a ransom is paid, although Conduent has not confirmed whether any ransom was demanded or paid [8][10] Company Performance - Conduent's stock has significantly declined, losing 90% of its value since peaking at over $23 per share in 2018, and is currently trading around $1.50 per share [10]