Govtech giant Conduent confirms client data stolen in January cyberattack

American business services giant and government contractor Conduent disclosed today that client data was stolen in a January 2025 cyberattack.

Conduent is a business services company that provides digital platforms and solutions for government and commercial clients in transportation, healthcare, customer experience, and human resources.

The company has over 33,000 employees and provides services to half of Fortune 100 companies and over 600 government and transportation agencies. 

In January, the company suffered a cyberattack that impacted customers’ operations across the U.S., including local government agencies.

In a new FORM-8K filing with the SEC today, Conduent has now confirmed that threat actors had stolen files containing information about the company’s customers.

“As part of its ongoing investigation, the Company determined that the threat actor exfiltrated a set of files associated with a limited number of the Company’s clients.” reads the 8-K filing.

“Due to the complexity of the files, the Company engaged cybersecurity data mining experts to evaluate the exfiltrated data and was recently informed of its nature, scope and validity, confirming that the data sets contained a significant number of individuals’ personal information associated with our clients’ end-users.”

“The Company is continuing to further analyze and document the precise and detailed impact of the data exfiltrated, and clients are being informed as appropriate in order to determine next steps as required by federal and state law.”

Conduent says there are no indications that the stolen data has been published on the dark web or in another public manner. BleepingComputer has also not been able to find any ransomware gangs or threat actors leaking or offering the data for sale.

The company says that the attack has not had any material impact on its operations, but it has incurred expenses in the first quarter related to the attack.

Conduct previously suffered a breach in 2020, when the Maze ransomware gang encrypted the company’s devices and stole corporate data.