A reported breach at Conduent, a government business process outsourcing contractor, allegedly exposed personally identifiable information (PII) for approximately 25 million Americans, including Social Security numbers belonging to state benefit recipients in Texas, New Jersey, and potentially other states, according to Texas officials and media reports. Texas officials have characterized this as the largest government-adjacent contractor breach in US history. Organizations with Conduent contracts or that share data with state benefit systems should treat this as a third-party data exposure event and assess downstream liability, notification obligations, and identity protection commitments to affected individuals.