The data breach at Conduent, a major government technology provider, has expanded to affect at least 25 million Americans, according to reports confirmed by multiple news outlets. The breach, initially disclosed in February 2024, has grown significantly, exposing sensitive personal information including Social Security numbers and medical data.
TechCrunch reported that the number of individuals impacted by the breach has “ballooned,” exceeding initial estimates. The New York Post detailed that approximately half of the residents of Texas are among those affected. The exposed data stems from Conduent’s handling of healthcare benefit claims and other government services.
The HIPAA Journal reported that the breach impacts over 25 million individuals, classifying it as one of the largest data security incidents of 2025. Conduent provides technology services to a wide range of government agencies and healthcare providers, making the scope of the breach particularly concerning.
According to TechRadar, the full extent of the compromised data may be even greater than currently understood. The breach occurred through a ransomware attack, and Conduent has been working to contain the incident and notify affected individuals. The company has not yet released a comprehensive list of all the data elements compromised.
The exposed data poses a significant risk of identity theft and fraud for those affected. Individuals are advised to monitor their credit reports and financial accounts for any unauthorized activity. Conduent has established a website and call center to provide information and assistance to those impacted by the breach.
As of February 11, 2026, Conduent has not publicly detailed the specific vulnerabilities exploited in the attack, nor has it provided a timeline for fully resolving the security issues. Investigations into the incident are ongoing.
