Data Breach at Government Contractor Affects Over 10 Million Americans

Data Breach at Government Contractor Affects Over 10 Million Americans

In a growing saga of data breaches compromising sensitive information, a leading government contractor has come forward with alarming revelations. Conduent, an organization responsible for managing essential public services throughout the United States, has disclosed that it experienced a significant cyber intrusion.

According to statements from Conduent, hackers successfully infiltrated the company’s systems for nearly three months, exposing personal information linked to more than 10 million individuals. The breach raises critical questions about the security protocols in place, particularly concerning companies that handle sensitive data.

Timeline of the Breach

The breach was discovered by Conduent in January 2025, with evidence suggesting that the hackers first accessed their network on October 21, 2024. During this substantial window of vulnerability, attackers allegedly exfiltrated vast amounts of data associated with state-level programs, including Medicaid, child support, and food assistance.

Following the breach’s containment, Conduent asserted that its internal investigation found no continuing malicious activity. Systems were seemingly restored to normal operations, but questions linger over the potential impact of the stolen data.

Scope and Impact of the Data Compromise

Conduent is integral to the operation of technology and payment systems across numerous U.S. states. According to company estimates, they oversee approximately $85 billion in annual disbursements and handle over 2 billion customer service interactions yearly. It supports a population of around 100 million residents through various government health and welfare programs.

Preliminary reports indicate that at least 400,000 individuals in Texas have been affected. Compromised data includes sensitive information like Social Security numbers, medical records, and health insurance details. Other states impacted by the breach include Washington, South Carolina, New Hampshire, Maine, Oregon, Massachusetts, and California.

Conduent has begun notifying all individuals connected to the exposure and has established a dedicated call center to address inquiries regarding the breach.

Operational Disruptions Following the Breach

In the wake of the cyberattack, Conduent described the incident as an