Millions of people received notification letters about the Conduent Data Breach, as the ransomware group claimed that eight terabytes had been stolen in one of the biggest incidents in American history. Those who were impacted by a significant data breach at Conduent Business Services, LLC, a government technology contractor that handles payments, medical claims, and back-office services for customers across the country, started receiving letters this month. The business acknowledged that for almost three months in late 2024 and early 2025, an unauthorized third party gained access to its systems and stole files that contained tens of millions of Americans' personal data.The scope of the breach has grown since Conduent first made it public in an April 2025 SEC filing.

At least 15.4 million people are impacted in Texas alone, according to recent state regulatory reports (up from an initial estimate of 4 million). Previous filings indicated that 10.5 million people were impacted in Oregon, and hundreds of thousands more were impacted in other states. Download the Conduent Data Breach Notice Conduent stated in its initial SEC disclosure that there would be no material impact on operations; however, subsequent filings mentioned non-recurring costs associated with the response and notifications of about $25 million (based on estimates from Q1 2025).

The business is still collaborating with customers on individual notifications and regulatory compliance.In February 2026, Texas Attorney General Ken Paxton began an investigation, characterizing the event as possibly one of the biggest healthcare data breaches in American history.

Beyond its regulatory filings, Conduent has not made any public comments regarding the ransomware group's allegations. What Those Who Are Affected Should Do The business suggests being on the lookout for fraud and identity theft.