Volvo Group hit in massive Conduent data breach

Key Points:

• Conduent experienced a significant data breach affecting nearly 17,000 employees of Volvo Group North America, with the total number of impacted individuals rising to 25 million across multiple states.
• The breach exposed sensitive personal information, including names, Social Security numbers, dates of birth, addresses, and health information. The attack was attributed to the Safepay ransomware group and occurred from October 21, 2024, to January 13, 2025.
• Organizations should enhance monitoring for unauthorized access and implement robust data protection measures. Affected individuals are advised to utilize identity protection services offered by Conduent.

Technical Details: The breach involved unauthorized access to Conduent's network, leading to the theft of personal data over an extended period. The Safepay ransomware group claimed responsibility for the attack.

MITRE ATT&CK Techniques:

• T1071.001 - Application Layer Protocol: Web Protocols (Command and Control)
• T1046 - Network Service Discovery (Discovery)
• T1083 - File and Directory Discovery (Discovery)

IOCs Mentioned: None mentioned