At least 26 million Americans have been impacted by a major hack that has been called the 'largest breach in US history.'
Personal data was stolen from Conduent, a company that provides printing, payment and document processing services for some of the largest health insurance providers in the nation.
Addresses, Social Security numbers and health information were exposed.
In Texas, as many as 15.4 million residents may have had their personal information compromised, while Oregon officials report another 10.5 million affected individuals.
Hundreds of thousands more in states including Delaware, Massachusetts and New Hampshire have also received breach notifications. Cybersecurity experts warned that anyone using state healthcare programs or other government services could have their sensitive data exposed.
Consumers concerned that their personal information may have been exposed or sold on the dark web can check their email addresses using the website HaveIBeenPwned.com.
By entering an email address, the tool scans known data breaches and shows whether that address has appeared in leaked databases linked to past cyberattacks.
If your information has been compromised, experts recommend taking steps to protect your identity, such as changing passwords, enabling two-factor authentication, and considering a reputable data removal or identity protection service to reduce the spread of your personal data online.
Personal data was stolen from Conduent, a company that provides printing, payment, and document processing services for some of the largest health insurance providers in the nation.
Conduent acknowledged the breach, posting online that it occurred from October 21, 2024 to January 13, 2025, and involved data held in its systems.
The company said in its breach notice that 'not every data element was present for every individual,' meaning some victims may have had only certain details exposed, such as a Social Security number or health insurance information, but not both.
The Safepay ransomware group has claimed responsibility for the attack, according to cybersecurity outlet Bleeping Computer, and reportedly obtained more than eight terabytes of data.
It remains unclear whether the hackers have demanded a ransom. Conduent said it is 'not aware of any attempted or actual misuse of the information involved' at this time.
However, the full scale of the incident is unknown, as the number of victims continues to increase.
Texas Attorney General Ken Paxton said last week that more than 4 million Texans had their data compromised.
However, Fox News reported this week that the number has surged to nearly half of the state's 31 million residents.
'The Conduent data breach was likely the largest breach in US history. If any insurance giant cut corners or has information that could help us prevent breaches like this in the future, I will work to uncover it,' Paxton said in a statement.
'My office is committed to uncovering exactly what went wrong, taking action to protect Texas families, and ensuring there is justice for any negligence.'
Reports show the breach has also affected Americans in Georgia, South Carolina, New Jersey, Maine and New Mexico. Experts fear the list is growing.
Daily Mail has contacted Conduent for comment.
Security experts urge consumers to take immediate steps to reduce the risk of identity theft following a data breach.
One of the most effective measures is placing a free credit freeze with the three major credit bureaus, Equifax, Experian and TransUnion, which prevents new accounts from being opened in your name.
Consumers should also monitor their credit reports regularly for unfamiliar accounts or suspicious activity and review bank and credit card statements closely for unauthorized charges.
Experts also warned people to be cautious of phishing emails or phone calls claiming to be related to the breach, as scammers often exploit high-profile incidents.
Placing a fraud alert on your credit file is another option, requiring lenders to verify your identity before approving new credit.