Skip to main content
close search
site logo
Dive Brief

Conduent warns January breach impacted a ‘significant’ number of people

The company incurred material amount of nonrecurring expenses during Q1 related to potential notification requirements.

Published April 22, 2025
David Jones's headshot
Reporter
A 2018 photo of the Wisconsin state capitol building. The state was among a number of states impacted by a 2025 data breach at Conduent, a payments technology vendor.
A 2018 photo of the Wisconsin state capitol building. The state was among a number of states impacted by a 2025 data breach at Conduent, a payments technology vendor. Andy Manis via Getty Images

Dive Brief: 

  • Conduent Inc. warned in an April 14 regulatory filing with the Securities and Exchange Commission that a “significant” number of people had their personal data stolen in a January cyberattack that affected a limited number of the company’s clients.
  • The company, a major government payments technology vendor for social services and transit systems, was targeted in a Jan. 13 attack that disrupted certain operations. 
  • The company warned it has incurred and accrued a material amount of nonrecurring expenses related to the breach. A spokesperson for the company did not have specific numbers yet, but a breach notification has already been posted by the California Attorney General’s office.

Dive Insight:

As previously reported, the January breach became public after Wisconsin officials confirmed delays in child support payments. The Florham Park, New Jersey-based firm provides technology used by various government agencies. 

Conduent confirmed in January that the attack was related to a cyber intrusion but did not elaborate on how the threat actor gained access or what specific techniques were used once the hackers breached the systems.

In a Feb. 19 letter that was posted Friday by the California AG’s office, Conduent said there was no additional threat activity following the January breach. Conduent worked with Palo Alto Networks’ Unit 42 on the breach investigation.  

Conduent confirmed in the SEC filing that the hackers gained access to a limited number of its clients and exfiltrated files that contained personal data for a significant number of end users that access its client’s databases. 

“The company continues its efforts to understand the full nature and scope of that affected data and will partner with its affected clients to provide appropriate notifications under the law,” a Conduent spokesperson told Cybersecurity Dive on Monday. 

Conduent is the vendor for the Wisconsin Child Support Trust Fund, and Wisconsin officials said the incident affected the ability to process child support payments. End users received payments through funds transfers or EBT cards.

The Wisconsin Department of Children and Families has been notified that no user data in that state breached, according to a spokesperson.

According to Conduent’s website, 37 states use the company’s Electronic Payment Card solutions, however it is not immediately known the total number of states affected by the breach. At the time of the attack, four states were said to be impacted.

State and local government data breaches have been a growing concern. A threat group was linked to the December attack on a Rhode Island social services database that was managed by Deloitte. More than 700,000 people were affected by that incident.

Filed Under: Breaches, Cyberattacks

Editors' picks

Company Announcements

View all | Post a press release
Onsite Mammography Data Breach Investigation
From Migliaccio & Rathod LLP
April 22, 2025
Why One Startup Thinks Cybersecurity Tools Aren’t the Problem—But How We Use Them Is
From Trevor Lane
April 14, 2025
98% of Brands Targeted by Cyber Attacks in 2024 – BrandShield CyberScam Report Reveals Rising …
From BrandShield
April 02, 2025
As Attacks Grow on Critical Infrastructure, New RunSafe Tool Scores Hidden Threats in Embedded…
From RunSafe Security
April 07, 2025
Editors' picks
Latest in Breaches
Industry Dive is an Informa TechTarget business.
© 2025 TechTarget, Inc. or its subsidiaries. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell
This website is owned and operated by Informa TechTarget, part of a global network that informs, influences and connects the world's technology buyers and sellers. All copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. TechTarget, Inc.'s registered office is 275 Grove St. Newton, MA 02466.