A data breach at Conduent, a business services provider, has increased the number of people affected to 25 million, including nearly 17,000 employees of Regal's North American division.
Regal North America has confirmed that it is one of the largest corporations affected by the massive security breach that compromised the data of nearly 17,000 of its employees. According to SecurityWeek, the scope of the breach is much larger than initially estimated: 15 million people are affected in Texas (up from the 4 million originally announced) and more than 10 million in Oregon.
Conduent confirmed in November 2025 that a data breach that occurred in January of the same year resulted in the compromise of the personal information of more than 10 million individuals, including names, addresses, dates of birth, social security numbers, and medical and insurance information.
In April 2025, the company announced that personal information, including names and Social Security numbers, had been stolen in a cyberattack in January of that year. In January, Conduent announced that the cyberattack had resulted in service disruptions, with organizations in several U.S. states reporting service outages, and Wisconsin and Oklahoma noting that their payment systems and customer support services had been affected.
Conduent disclosed that hackers breached its network between October 21, 2024 and January 13, 2025, stealing users' personal information, including Social Security numbers, dates of birth, addresses and medical information. The company has notified affected individuals and is offering free identity protection services.
The Safepay ransomware group has admitted in February 2025 to launching this attack.
Conduent, which primarily provides printing, mail processing, document processing, payment verification and other back office services, sent breach notifications to affected individuals on behalf of Regal. Regal notified the Maine Attorney General that a total of 16,991 employees were affected and said it did not learn of the breach until January 2026, several months after the incident.
The notice sent by Conduent to affected persons and filed with the Maine Attorney General's Office states, "Conduent Business Services, LLC ("Conduent") provides third-party printing and letter processing, document processing, payment verification, and other back office support services on behalf of our clients. This letter is to notify you of a recent incident involving Conduent or involving some of your personal information held by us as a result of our services to your current or former health plan."
"Whilst we are not aware of any attempted or actual misuse of the data at this time, you are advised of the details of the incident and the self-protection measures available to you, should you consider them necessary."
估計損失高達-19-億英鎊,為英國歷來之最.jpg)
