A Breach That Won't Stop Growing
The January 2025 ransomware attack on government technology giant Conduent continues to balloon in scope more than a year later. What was initially disclosed as a significant but contained incident has now been confirmed to affect at least 15.4 million people in Texas alone and 10.5 million in Oregon — with the total number of victims potentially stretching to dozens of millions nationwide.
Breach Scale by State
| State | Affected Individuals | Population Impact |
|---|---|---|
| Texas | 15.4 million | ~50% of state population |
| Oregon | 10.5 million | ~250% of state population* |
| Other states | Under investigation | Unknown |
*Oregon's number exceeds its population because Conduent processes records for former residents and multi-state program participants.
What Was Stolen
| Data Type | Risk Level |
|---|---|
| Full names | High |
| Social Security numbers | Critical |
| Medical data | Critical |
| Health insurance information | Critical |
| Addresses | High |
| Dates of birth | High |
The combination of SSNs, medical data, and health insurance information creates extreme risk for:
- Identity theft at scale
- Medical identity fraud — using stolen insurance data for fraudulent claims
- Tax fraud — filing fraudulent returns with stolen SSNs
- Government benefit fraud — accessing benefits in victims' names
Why This Breach Is Different
Supply Chain Amplification
Conduent is not a consumer-facing company — it's a government technology contractor that provides services to federal, state, and local agencies. This means:
- The breach is a supply chain attack on government infrastructure
- Affected individuals did not choose to share data with Conduent
- Data was collected through mandatory government programs (healthcare, benefits, taxes)
- Victims have no ability to opt out of the data collection that led to their exposure
Scale Continues Growing
The breach's scope has expanded multiple times since disclosure:
Jan 2025 — Initial ransomware attack
Mid 2025 — First breach notifications (limited scope disclosed)
Late 2025 — Texas confirms 15.4 million affected
Feb 2026 — Oregon confirms 10.5 million affected
Feb 2026 — Total potentially in the tens of millions nationwideEach new state investigation reveals additional millions of affected individuals.
Recommendations for Potentially Affected Individuals
Given the massive scope, anyone who has interacted with government services in Texas, Oregon, or other states where Conduent operates should take precautions:
- Freeze credit with all three bureaus (Equifax, Experian, TransUnion)
- Monitor SSN activity using the SSA's mySSA portal
- Review health insurance EOBs for fraudulent medical claims
- File IRS Identity Protection PIN to prevent tax fraud
- Monitor government benefit accounts for unauthorized access
- Enroll in credit monitoring if offered by Conduent
When a government contractor holding tens of millions of Americans' most sensitive data is breached, it's not just a corporate incident — it's a national security concern. The Conduent breach exemplifies the systemic risk of concentrating sensitive government data with third-party contractors.
Sources
- TechCrunch — Data Breach at Govtech Giant Conduent Balloons
- Bright Defense — Recent Data Breaches February 2026