CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Navia Benefit Solutions reports data exposure impacting 2.7 million individuals

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

Navia Benefit Solutions disclosed a data breach affecting approximately 2.7 million individuals, with unauthorized access detected between December 22, 2025, and January 15, 2026. The company became aware of suspicious activity on January 23, 2026, and initiated an investigation. Exposed data includes full names, dates of birth, Social Security Numbers, phone numbers, email addresses, and enrollment details for various benefits programs (HRA, FSA, COBRA). No claims or financial details were exposed, but the leaked data poses risks for phishing and social engineering campaigns. Navia has notified law enforcement and offered affected individuals 12 months of identity protection services via Kroll.

Timeline

  1. 19.03.2026 22:43 1 articles · 3h ago

    Navia Benefit Solutions identifies prolonged unauthorized access affecting 2.7 million individuals

    Unauthorized access to Navia’s systems occurred from December 22, 2025, to January 15, 2026, with suspicious activity detected on January 23, 2026. The exposed data includes full names, dates of birth, Social Security Numbers, contact details, and enrollment information for HRA, FSA, and COBRA programs. No claims or financial data was compromised, but the incident heightens risks of phishing and identity theft targeting affected individuals.

    Show sources
    Open in new tab

Information Snippets

  • Unauthorized actor maintained access to Navia’s systems from December 22, 2025, to January 15, 2026.

    First reported: 19.03.2026 22:43
    1 source, 1 article
    Show sources

  • Breach discovery occurred on January 23, 2026, following detection of suspicious activity.

    First reported: 19.03.2026 22:43
    1 source, 1 article
    Show sources

  • Exposed data includes full name, date of birth, Social Security Number, phone number, email address, and enrollment details for HRA, FSA, and COBRA programs.

    First reported: 19.03.2026 22:43
    1 source, 1 article
    Show sources

  • Navia states no claims or financial information was exposed in the incident.

    First reported: 19.03.2026 22:43
    1 source, 1 article
    Show sources

  • Navia is a U.S.-based administrator of benefits serving over 10,000 employers, specializing in FSA, HSA, HRA, commuter benefits, COBRA services, and related compliance offerings.

    First reported: 19.03.2026 22:43
    1 source, 1 article
    Show sources