NAVIA Benefit Solutions, a third‑party benefits administrator based in Renton, Washington, says that between 22 December 2025 and 15 January 2026 hackers accessed its systems, with the incident discovered on 23 January 2026. The breach exposed personal information including names, dates of birth, Social Security numbers, phone numbers, and email addresses, as well as health plan information.
The company says roughly 2.7 million people were affected, and this week the Maine Attorney General’s Office said 2,697,540 individuals were likely impacted by the data breach. Navia is providing the affected individuals with 12 months of free identity theft and credit monitoring services. The organisation emphasised steps for customers to stay vigilant and review statements and credit reports for suspicious activity.
Written by Ionut Arghire, the article notes the breach was investigated and that the company notified potentially impacted individuals by letter where addresses were available.