American enterprise companies large and authorities contractor Conduent disclosed right now that shopper information was stolen in a January 2025 cyberattack.
Conduent is a enterprise companies firm that gives digital platforms and options for presidency and industrial shoppers in transportation, healthcare, buyer expertise, and human sources.
The corporate has over 33,000 workers and offers companies to half of Fortune 100 corporations and over 600 authorities and transportation businesses.
In January, the corporate suffered a cyberattack that impacted clients’ operations throughout the U.S., together with native authorities businesses.
In a brand new FORM-8K submitting with the SEC right now, Conduent has now confirmed that risk actors had stolen information containing details about the corporate’s clients.
“As a part of its ongoing investigation, the Firm decided that the risk actor exfiltrated a set of information related to a restricted variety of the Firm’s shoppers.” reads the 8-Okay submitting.
“As a result of complexity of the information, the Firm engaged cybersecurity information mining specialists to judge the exfiltrated information and was just lately knowledgeable of its nature, scope and validity, confirming that the info units contained a big variety of people’ private info related to our shoppers’ end-users.”
“The Firm is constant to additional analyze and doc the exact and detailed impression of the info exfiltrated, and shoppers are being knowledgeable as acceptable as a way to decide subsequent steps as required by federal and state legislation.”
Conduent says there aren’t any indications that the stolen information has been revealed on the darkish net or in one other public method. BleepingComputer has additionally not been capable of finding any ransomware gangs or risk actors leaking or providing the info on the market.
The corporate says that the assault has not had any materials impression on its operations, nevertheless it has incurred bills within the first quarter associated to the assault.
Conduct beforehand suffered a breach in 2020, when the Maze ransomware gang encrypted the corporate’s gadgets and stole company information.
Primarily based on an evaluation of 14M malicious actions, uncover the highest 10 MITRE ATT&CK methods behind 93% of assaults and how one can defend in opposition to them.
