Navia Benefit Solutions data breach exposing benefits records
Data Leak
Summary
Hide ▲
Show ▼
Navia Benefit Solutions disclosed a data breach that exposed sensitive data tied to nearly 2.7 million individuals. Attackers had access to its systems from December 22, 2025 to January 15, 2026, and the activity was discovered on January 23. Exposed records may include SSNs, dates of birth, email addresses, phone numbers, and HRA/FSA/COBRA enrollment details. The exposure raises follow-on risk of phishing and social engineering against affected people.
Related Happenings
HackerOne employee and dependent data leak after Navia breach
Data Leak
First: 24.03.2026 16:01
Last: 24.03.2026 16:01
Sources 1
About this happening:
HackerOne disclosed that **sensitive employee and dependent data** was exposed after attackers accessed **Navia** through a **Broken Object Level Authorization (BOLA) vulnerabilit...
HackerOne employee and dependent data leak after Navia breach
Data LeakAbout this happening: HackerOne disclosed that **sensitive employee and dependent data** was exposed after attackers accessed **Navia** through a **Broken Object Level Authorization (BOLA) vulnerabilit...
Navia Benefit Solutions Inc. hit by cyberattack
Incident
First: 19.03.2026 22:43
Last: 19.03.2026 22:43
Sources 1
How related:
Navia Benefit Solutions, Inc. (Navia) is informing nearly 2.7 million individuals of a data breach that exposed their sensitive information to attackers.
About this happening:
**Navia Benefit Solutions, Inc.** disclosed a **data breach** that exposed sensitive information for **nearly 2.7 million individuals**, after attackers had access to its systems...
Navia Benefit Solutions Inc. hit by cyberattack
IncidentHow related: Navia Benefit Solutions, Inc. (Navia) is informing nearly 2.7 million individuals of a data breach that exposed their sensitive information to attackers.
About this happening: **Navia Benefit Solutions, Inc.** disclosed a **data breach** that exposed sensitive information for **nearly 2.7 million individuals**, after attackers had access to its systems...
Ericsson Inc. employee and customer data leak after service provider hack
Data Leak
First: 09.03.2026 21:07
Last: 09.03.2026 21:07
Sources 1
About this happening:
**Ericsson Inc.** disclosed a **data leak** after a hacked **service provider** exposed personal information for **employees and customers**, including sensitive identity and fina...
Ericsson Inc. employee and customer data leak after service provider hack
Data LeakAbout this happening: **Ericsson Inc.** disclosed a **data leak** after a hacked **service provider** exposed personal information for **employees and customers**, including sensitive identity and fina...
Latest development: 10.03.2026 17:00
Ericsson Inc. said a third-party service provider identified suspicious activity on April 28, 2025, and later determined that files containing employee and customer personal information may have been accessed or acquired without authorization between April 17 and April 22, 2025. A Texas Attorney General filing on March 9 reported 4,377 impacted Texas residents, and Ericsson said the exposed data could include names, addresses, Social Security Numbers, government-issued ID numbers, financial information, medical information and dates of birth. Ericsson also said there is no evidence that the information has been misused and is offering complimentary identity protection services through IDX.
TriZetto Provider Solutions hit by cyberattack
Incident
First: 06.03.2026 21:50
Last: 06.03.2026 21:50
Sources 1
About this happening:
TriZetto Provider Solutions disclosed a **data breach** involving **unauthorized web portal access** that exposed sensitive information for **3,433,965 people**, creating signific...
TriZetto Provider Solutions hit by cyberattack
IncidentAbout this happening: TriZetto Provider Solutions disclosed a **data breach** involving **unauthorized web portal access** that exposed sensitive information for **3,433,965 people**, creating signific...
Conduent hit by network compromise
Incident
First: 10.02.2026 19:04
Last: 10.02.2026 19:04
Sources 1
About this happening:
**Conduent** disclosed a **security breach** affecting its **IT systems** between **October 21, 2024** and **January 13, 2025**. Threat actors stole **full names**, **Social Secur...
Conduent hit by network compromise
IncidentAbout this happening: **Conduent** disclosed a **security breach** affecting its **IT systems** between **October 21, 2024** and **January 13, 2025**. Threat actors stole **full names**, **Social Secur...
Timeline
-
19.03.2026 22:43 1 articles · 2mo ago
Navia Benefit Solutions discovers suspicious activity
Detection Ioc UpdateNavia Benefit Solutions, Inc. discovered suspicious activity on January 23, 2026 and began an inquiry into unauthorized access to its systems; the investigation later determined that an unauthorized actor had accessed and acquired information between December 22, 2025 and January 15, 2026.
Show sources
- Navia discloses data breach impacting 2.7 million people — www.bleepingcomputer.com — 19.03.2026 22:43
-
19.03.2026 22:43 2 articles · 2mo ago
Navia Benefit Solutions discloses breach affecting nearly 2.7 million people
Initial DisclosureOn March 19, 2026, Navia Benefit Solutions, Inc. informed nearly 2.7 million individuals that a data breach exposed sensitive information, including names, dates of birth, Social Security Numbers, phone numbers, email addresses, and HRA/FSA/COBRA enrollment details, while stating that claims and financial information were not exposed. Navia also said it reviewed security posture and data retention policies, notified federal law enforcement, and offered affected customers free 12-month identity protection and credit monitoring through Kroll.
Show sources
- Navia discloses data breach impacting 2.7 million people — www.bleepingcomputer.com — 19.03.2026 22:43
- Navia discloses data breach impacting 2.7 million people — www.bleepingcomputer.com — 19.03.2026 22:43