Conduent is a business services company that provides digital platforms and solutions for government and commercial clients in transportation, healthcare, customer experience, and human resources. In a new FORM-8K filing with the SEC today, Conduent has now confirmed that threat actors had stolen files containing information about the company's customers. American business services giant and government contractor Conduent disclosed today that client data was stolen in a January 2025 cyberattack. "As part of its ongoing investigation, the Company determined that the threat actor exfiltrated a set of files associated with a limited number of the Company's clients." reads the 8-K filing. In January, the company suffered a cyberattack that impacted customers' operations across the U.S., including local government agencies. Conduct previously suffered a breach in 2020, when the Maze ransomware gang encrypted the company's devices and stole corporate data. BleepingComputer has also not been able to find any ransomware gangs or threat actors leaking or offering the data for sale. Lawrence Abrams Lawrence Abrams is the owner and Editor in Chief of BleepingComputer.com. Lawrence's area of expertise includes Windows, malware removal, and computer forensics. Conduent says there are no indications that the stolen data has been published on the dark web or in another public manner. The company says that the attack has not had any material impact on its operations, but it has incurred expenses in the first quarter related to the attack. Lawrence Abrams is a co-author of the Winternals Defragmentation, Recovery, and Administration Field Guide and the technical editor for Rootkits for Dummies.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 14 Apr 2025 20:50:33 +0000