This Massive Healthcare Data Breach Was Even Larger Than Previously Reported.
At least 25 million people have been affected by a major hacker attack on business services company Conduent. The data breach itself is not new—it was first reported in January 2025, and Conduent has already notified millions of people whose data was compromised. However, the scale of the breach is now believed to be larger than previously reported, and it may be one of the largest in the healthcare industry .
Who is Conduent?
Conduent is a New Jersey-based business process outsourcing (BPO) company that provides printing, payments, document processing, and claims services to state and federal government agencies, as well as large commercial and transportation organizations. According to the company’s 2025 annual report , these services include the payment of benefits such as food assistance and child support, as well as the administration of government healthcare programs (such as Medicaid). For large corporations, services include unemployment benefits and workers’ compensation management.
Conduent was spun off from Xerox in 2017 and currently has approximately 51,000 employees worldwide.
What happened as a result of the Conduent data breach?
In January 2025, Conduent suffered a security breach , later confirmed to be the result of a “cybersecurity incident.” The outage lasted several days , during which agencies across the United States were unable to process some benefit payments. Although the breach was discovered in January, hackers reportedly gained access to Conduent’s systems several months earlier, on October 21, 2024. The ransomware group Safepay later claimed responsibility for the attack.
Although Conduent confirmed the breach of customer information in April 2025 , it only began notifying victims in October. According to these notifications, the compromised data included names, Social Security numbers, dates of birth, health insurance information, and medical records.
How many people were affected by the data leak?
The scale of the data breach continues to grow, but the total number of victims currently stands at approximately 25 million . Residents of Texas and Oregon appear to have suffered the most damage, although notifications have also been received in California, Delaware, Maine, Massachusetts, New Hampshire, and New Mexico. (By comparison, the total number of users affected by the Change Healthcare ransomware attack in 2024 is currently estimated at 190 million .)
What to do if you are injured?
If you’ve received a notification that your data has been compromised, you should take every precaution to protect your identity : at a minimum, freeze your credit history and set up a fraud alert for up to one year to prevent credit applications using your information. None of the notifications we saw offered credit monitoring or identity theft protection services, but you may also be able to use these services.
Given the ubiquity of data breaches and information compromises, you should constantly monitor your credit history and financial accounts to quickly identify any suspicious activity. If you detect fraudulent activity, immediately report it to your bank and/or credit institution and file an identity theft report.