- The pipeline breach is much larger than initially reported and now affects tens of millions across multiple US states.
- The data includes names, social security numbers, medical and insurance details; Texas alone has 15.4 million victims, Oregon more than 10 million
- The SafePay ransomware group claimed responsibility and said it stole 8.5 TB of data, although Conduent is silent beyond repetitive statements.
The recent data breach at Conduent now appears to have been much larger than initially thought and affected tens of millions of people.
Conduent is a major government contractor working with more than 600 government entities worldwide, including those at the state, local and federal levels. It also serves most Fortune 100 companies and manages large-scale tolling and transportation systems. In fact, it claims to support “6 of the 10 largest toll systems in the US.” through a toll transaction processing infrastructure.
In late October 2025, it confirmed having suffered a data breach in January of that year and said initial investigation put the number of people affected at around four million. The stolen data included people’s names, Social Security numbers, medical data and health insurance information. However, the data stolen varies from person to person.
Half of Texas affected
At the time, reports looked at the stolen data and claimed that over 10 million people were affected, and while closer than Conduent claimed, it still apparently missed the mark.
New TechCrunch Reports claim that in Texas alone, 15.4 million people are affected, representing approximately half of the state’s total population. According to the Oregon Attorney General’s Office, that state has more than 10 million people affected. Additionally, Conduent apparently reached “hundreds of thousands” of people in Delaware, Massachusetts, New Hampshire and other states.
The company itself does not give any statements other than those it sends to the press. Therefore, it is not yet known exactly how many people are actually affected.
A ransomware operation known as SafePay took responsibility for this attack and claimed it stole 8.5TB of data. SafePay isn’t as popular as LockBit or RansomHub, but it did find some notable names, including Ingram Micro.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
