Major government contractor Conduent hit by service interruptions, blames third party

Conduent, a major government contractor, is experiencing a significant service interruption affecting multiple U.S. states' government services.

The company has officially termed it a "service interruption," but sources familiar with the incident have indicated it was caused by a cyberattack. The outage has disrupted various government benefits and support payment systems across several states.:

• Wisconsin Department of Children and Families is unable to process child support payments for most of the week until January 19, 2025 when service was restored.
• Oklahoma Human Services service line supporting food assistance program was disrupted from January 9, 2025, until January 19, 2025 when state systems were reported as "working as expected"

The total number of affected individuals and the financial impact have not been disclosed by Conduent or the affected state agencies.

Conduent has acknowledged the ongoing outage but has declined to provide specific details or confirm whether it's a cyber incident. The company states they have restored some services and are working to resolve remaining issues.

Update - Conduent claims that the outage was due to a cyberattack that compromised the company’s operating systems. A Conduent spokesperson the company recently “experienced an operational disruption due to a third-party compromise” of one of their operating systems. It's not clear how a third party compromise can disrupt an operating system, but it's what they are claiming.

As of 14th of April 2025, Conduent has officially confirmed that client data was stolen during the cyberattack. The investigation determined that "the threat actor exfiltrated a set of files associated with a limited number of the Company's clients". Conduent is "continuing to further analyze and document the precise and detailed impact of the data exfiltrated," and is informing affected clients "as appropriate in order to determine next steps as required by federal and state law."

As of 27th of October 2025, Conduent reports that the breach has been traced back to an October 2024 intrusion that investigators uncovered after a months-long forensic investigation. The total number of affected individuals is still not disclosed. Multiple organizations are separately reporting being affected. According to disclosures filed with state attorney general offices and federal regulators, the incident affected approximately 10.5 million individuals across multiple Conduent clients nationwide. Other Blue Cross Blue Shield organizations impacted include Blue Cross Blue Shield of Montana, where approximately 462,000 current and former members had their protected health information compromised, and Premera Blue Cross, where an undisclosed number of members were affected. Healthcare organization Humana was also identified as one of the affected clients in a disclosure filed with the New Hampshire Attorney General's office on October 8, 2025.

Texas attorney general's office website indicates that more than 4 million Texans were impacted by the breach. More than 1 million people in Oregon are reported to be affected.

Ransomware group SafePay claimed responsibility for the attack and listed Conduent on its leak site. SafePay, claimis to have stolen 8.5 terabytes of files from Conduent’s systems.

As of 31st of October, Conduent confirmed that the data breach impacted over 10.5 million people.

As of 5th of February 2026, the incident at Conduent appears to affect at least 15.4 million people. 

As of 24th of February 2026, TechCrunch is reporting a tally of impacted individuals of about 25 million people. Oregon (10.5 million) and Texas (15.4 million) account for the majority of the affected. Other data breach notices seen by TechCrunch include another few hundred thousand individuals across Massachusetts, New Hampshire and Washington.