Navia discloses data breach impacting 2.7 million people

Recorded: March 20, 2026, midnight

Original

News

Featured
Latest

ConnectWise patches new flaw allowing ScreenConnect hijacking

New DarkSword iOS exploit used in infostealer attack on iPhones

Apple pushes first Background Security Improvements update to fix WebKit flaw

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

Navia discloses data breach impacting 2.7 million people

New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores

Get Luminar Neo lifetime access and a full bundle for just $79.99

Bitrefill blames North Korean Lazarus group for cyberattack

Tutorials

Latest
Popular

How to access the Dark Web using the Tor Browser

How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11

How to use the Windows Registry Editor

How to backup and restore the Windows Registry

How to start Windows in Safe Mode

How to remove a Trojan, Virus, Worm, or other Malware

How to show hidden files in Windows 7

How to see hidden files in Windows

Webinars
Downloads

Latest
Most Downloaded

Qualys BrowserCheck

STOPDecrypter

AuroraDecrypter

FilesLockerDecrypter

AdwCleaner

ComboFix

RKill

Junkware Removal Tool

Deals

Categories

eLearning

IT Certification Courses

Gear + Gadgets

Security

VPNs

Popular

Best VPNs

How to change IP address

Access the dark web safely

Best VPN for YouTube

Forums
More

Virus Removal Guides
Startup Database
Uninstall Database
Glossary
Send us a Tip!
Welcome Guide

HomeNewsSecurityNavia discloses data breach impacting 2.7 million people

Navia discloses data breach impacting 2.7 million people

By Bill Toulas

March 19, 2026
04:43 PM
0

Navia Benefit Solutions, Inc. (Navia) is informing nearly 2.7 million individuals of a data breach that exposed their sensitive information to attackers.
An investigation into the incident revealed that the hackers had access to the organization's systems between December 22, 2025, and January 15, 2026. However, the company discovered the suspicious activity on January 23.
Navia says that it responded immediately and launched an inquiry to determine the potential impact of the incident.
“The investigation determined that an unauthorized actor accessed and acquired certain information between December 22, 2025, and January 15, 2026,” the company says in the notification to impacted individuals.
Navia is a consumer-focused administrator of benefits that provides services to more than 10,000 employers across the U.S.
The company provides software and customer services for the administration of Flexible Spending Accounts (FSA), Health Savings Accounts (HSA), Health Reimbursement Arrangements (HRA), Commuter Benefits and COBRA Services.
It also helps handle commuter benefits, lifestyle accounts, education benefits, compliance/risk services, and retirement-related offerings.
According to the company, the investigation into the breach revealed that the hacker accessed and may have exfiltrated the following types of data:
Full name
Date of birth
Social Security Number (SSN)
Phone number
Email address
Participation in HRA (Health Reimbursement Arrangements)
FSA (Flexible Spending Accounts) information
Consolidated Omnibus Budget Reconciliation Act (COBRA) enrollment information
Navia underlines that the data breach did not expose details about claims or financial information. Nevertheless, the exposed data is enough for threat actors to deploy phishing and social engineering attacks aimed at affected individuals.
The company states that it has reviewed its security posture and data retention policies to identify potential weaknesses that can be improved, and has notified federal law enforcement about the incident.
Customers whose information was exposed will be covered by a free 12-month identity protection and credit monitoring service from Kroll. Letter recipients are also encouraged to consider placing a fraud alert and security freeze on their credit files.
At the time of writing, no ransomware group has claimed the Navia data breach.

Red Report 2026: Why Ransomware Encryption Dropped 38%
Malware is getting smarter. The Red Report 2026 reveals how new threats use math to detect sandboxes and hide in plain sight.Download our analysis of 1.1 million malicious samples to uncover the top 10 techniques and see if your security stack is blinded.
Download The Report

Related Articles:
Canadian retail giant Loblaw notifies customers of data breachEuropean DYI chain ManoMano data breach impacts 38 million customersVolvo Group North America customer data exposed in Conduent hackAura confirms data breach exposing 900,000 marketing contactsMedical device maker UFP Technologies warns of data stolen in cyberattack

Customer Data
Data Breach
Navia
Notification
Security Breach

Bill Toulas
Bill Toulas is a tech writer and infosec news reporter with over a decade of experience working on various online publications, covering open-source, Linux, malware, data breach incidents, and hacks.

Popular Stories

Stryker attack wiped tens of thousands of devices, no malware needed

Microsoft Exchange Online outage blocks access to mailboxes

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

Sponsor Posts

Uncover shadow AI apps, users, and risky data sharing. Get started in 5 min.

Secure your AI agents without sacrificing speed.

Cut VMware migration time by 60% with Acronis—move workloads faster, with less downtime.

Overdue a password health-check? Audit your Active Directory for free

Are refund fraud methods targeting your brand? You can monitor the underground for these threats.

Main Sections

News
Webinars
VPN Buyer Guides
SysAdmin Software Guides
Downloads
Virus Removal Guides
Tutorials
Startup Database
Uninstall Database
Glossary

Community

Forums
Forum Rules
Chat

Useful Resources

Welcome Guide
Sitemap

Company

About BleepingComputer
Contact Us
Send us a Tip!
Advertising
Write for BleepingComputer
Social & Feeds
Changelog

Username

Password

Remember Me

Not a member yet? Register Now

Reporter

Help us understand the problem. What is going on with this comment?

Spam

Abusive or Harmful

Inappropriate content

Strong language

Other

Read our posting guidelinese to learn what content is prohibited.

Submitting...
SUBMIT

Navia Benefit Solutions, Inc. disclosed a data breach impacting approximately 2.7 million individuals, revealing sensitive information to unauthorized actors. The breach occurred between December 22, 2025, and January 15, 2026, when hackers gained access to Navia’s systems, subsequently detected on January 23. Navia, a provider of benefits administration services for over 10,000 employers, conducted an investigation that determined the attackers accessed and potentially exfiltrated a significant amount of data. This included full names, dates of birth, Social Security Numbers, phone numbers, email addresses, participation details for Health Reimbursement Arrangements (HRAs), Flexible Spending Accounts (FSAs), and Consolidated Omnibus Budget Reconciliation Act (COBRA) enrollment information. Critically, the investigation confirmed that the breach did not involve claims or financial data. However, the exposed information presented a risk of phishing and social engineering attacks. Following the discovery, Navia undertook a review of its security protocols and data retention policies and notified federal law enforcement. Impacted individuals are receiving a complimentary 12-month identity protection and credit monitoring service from Kroll, alongside recommendations to place fraud alerts and security freezes on their credit files. Currently, no specific ransomware group has claimed responsibility for the Navia data breach.