Volvo reports a data breach impacting 16,991 North American employees due to a cyberattack on contractor Conduent by hacking group SafePay. Learn more.
© A. Krivonosov
Volvo has reported a significant data breach affecting current and former employees of its North American division. The breach, which compromised personal information of 16,991 individuals, is linked to a cyberattack on the company's contractor, Conduent.
According to Volvo's official statement, Conduent detected signs of a compromise in its IT infrastructure on January 13, 2025. An investigation revealed that unauthorized access to network systems occurred between October 21, 2024, and January 13, 2025. This breach allowed attackers to access data related to employee health insurance programs.
The hacking group SafePay, known for its malware expertise, has claimed responsibility for the attack. The group asserts that approximately 8.5 terabytes of information were stolen from Conduent's servers, though this volume has not been officially confirmed.
Conduent provides business process outsourcing services to major corporations in North America, including document processing, mail services, and payment security systems. This incident is not the first of its kind for the contractor. In October of last year, Conduent reported another large-scale data leak that exposed personal information of about 14.5 million people. The latest breach raises further concerns about data protection standards among corporate service providers.