好的,我现在需要帮用户总结这篇文章的内容,控制在100个字以内。首先,我得通读整篇文章,抓住主要信息。 文章讲的是美国公司Conduent在2024年发生了数据泄露事件,影响了超过1050万人。Conduent是Xerox分拆出来的BPO公司,为政府和企业提供服务。数据泄露涉及个人信息如姓名、社保号、出生日期等,但目前没有证据显示数据被滥用。 用户要求直接写描述,不需要开头语。所以我要把关键点浓缩:公司名称、事件时间、受影响人数、泄露的数据类型、是否有滥用迹象。 接下来,我需要把这些信息用简洁的语言表达出来,确保不超过100字。可能的结构是:公司名称 + 事件 + 影响人数 + 泄露数据 + 情况说明。 检查一下是否遗漏了重要信息,比如Conduent是Xerox分拆的,但可能不需要提到。重点在于数据泄露的影响和细节。 最后,组织语言,确保流畅且符合字数限制。 </think> 美国企业服务巨头Conduent确认2024年数据泄露事件影响超1050万人,涉及姓名、社保号等敏感信息,目前未发现数据滥用迹象。 2025-10-30 18:45:19 Author: www.bleepingcomputer.com(查看原文) 阅读量:5 收藏
American business services giant Conduent has confirmed that a 2024 data breach has impacted over 10.5 million people, according to notifications filed with the US Attorney General's offices.
Conduent is an American business process outsourcing (BPO) company that provides digital platforms and services for governments and enterprises. The company was spun off from Xerox in 2017 and currently employs 56,000 people across 22 countries, having an annual revenue of $3.4 billion.
The company began sending data breach notifications to affected individuals this month, with the largest reported number coming from the Oregon government, which said 10.5 million people were affected.
Further data breach notifications shared on the Texas AG site report 4 million people, 76k in Washington, and a couple of hundred in Maine.
Given that Conduent provides services to several other states where specific data breach figures aren't published, the actual impact could be far larger.
The data breach notifications state that people's name, Social Security Numbers, full date of birth, health insurance policy or ID number, or medical information was exposed.
Conduent's notification claims that, as of October 24, 2025, the time of its circulation, there's no evidence that the stolen data has been "misused."
BleepingComputer contacted Conduent to learn the exact number of impacted people nationwide, and we will update this post with their response once it reaches us.
At the start of the year, Conduent suffered a service outage that it later admitted was caused by a cybersecurity incident. Although the threat actor behind the attack wasn't named, the Safepay ransomware gang took responsibility for it in late February.
In April, the firm disclosed in a Form 8-K filing with the SEC that threat actors had stolen files from its systems that contained customer information, as well as data from their customers' clients.
An investigation into the scope of the data breach has now determined that the attack impacted millions of people. Furthermore, although the breach was discovered in January 2025, the environment had been compromised much earlier, on October 21, 2024.
Notification recipients are recommended to obtain credit reports and consider placing fraud alerts and a security freeze on their accounts, though no identity theft protection and credit monitoring services were offered in this case.
如有侵权请联系:admin#unsafe.sh