Conduent Inc. Disclosure of 8.5TB Data Breach in SEC Filing after Ransomware Attack

On April 9, 2025, Conduent Inc., a leading provider of business process services and digital platforms, disclosed a data breach in a filing with the U.S. Securities and Exchange Commission. According to the SEC disclosure, the incident involved a ransomware attack carried out by a group known as SAFEPAY. The threat actors claimed responsibility for the breach, stating they had exfiltrated approximately 8.5 terabytes of data from Conduent’s systems and announced their intention to publish the stolen data on the dark web within two to three days.

The attack was first made public through a posting on the Tor network, where the SAFEPAY group detailed their claims. The breach is believed to have exposed a substantial volume of sensitive organizational data.

While the full scope of the compromised information is not yet confirmed, ransomware incidents of this scale typically involve personally identifiable information (PII) such as names, addresses, Social Security numbers, dates of birth, and possibly protected health information (PHI), employee records, client data, and confidential business documents.

The severity of this breach is heightened by the large volume of data stolen and the threat of public exposure, which could lead to identity theft, fraud, and other malicious activities targeting individuals and organizations connected to Conduent.

Conduent's response

Following the discovery of the breach, Conduent Inc. promptly launched an internal investigation and notified law enforcement authorities. The company has been working with cybersecurity experts to assess the full impact of the incident and to contain any ongoing threats to its systems.

If you believe you may be affected by this breach, it is important to remain vigilant. Monitor your financial accounts and credit reports for any unusual activity. Be cautious of unsolicited communications that ask for personal information, and consider placing a fraud alert or credit freeze with the major credit bureaus.

If you receive a notification from Conduent or one of its partners, follow the instructions provided and take advantage of any identity protection or credit monitoring services offered.

For updates and additional resources, visit Conduent’s website.