Nearly 17,000 Volvo employees in the United States had personal data exposed after a breach of the outsourcing firm Conduent, with intruders accessing Conduent systems from October 21, 2024 to January 13, 2025.
KEY FACTS
- Incident Conduent systems breached
- Affected 16,991 Volvo employees in the US
- Access period October 21, 2024 to January 13, 2025
- Data exposed Names and files tied to current or former health plans
A filing with the Maine Attorney General shows Volvo Group North America learned in late January that 16,991 US employees were affected, including three in Maine.
Intruders accessed Conduent systems from October 21, 2024 to January 13, 2025, a months long period during which files linked to employees’ current or former health plans were taken.
Conduent detected the intrusion in January 2025, locked down affected systems and brought in forensic investigators. No evidence has emerged so far that the stolen data has been abused. Affected employees are being offered identity monitoring services.
The intrusion has been linked in public reporting to the SafePay ransomware crew, which claims to have taken multiple terabytes of data, although Conduent has not confirmed an attribution. Updated state filings and customer reviews of records are revising victim totals upward and suggest the incident could affect millions more Americans because Conduent handles systems tied to Medicaid, unemployment, child support and employer benefits.
WHY IT MATTERS
Breaches at large vendors can take months to unravel and can expand notification requirements across many corporate and public sector clients, potentially exposing sensitive personal data tied to health and government programs.