嗯,用户让我总结一篇文章的内容,控制在一百个字以内,而且不需要用特定的开头。首先,我需要仔细阅读文章,抓住主要信息。 文章讲的是Navia Benefit Solutions公司发生了数据泄露事件,影响了近270万人。黑客在2025年12月到2026年1月期间入侵了他们的系统,但公司直到1月23日才发现。泄露的数据包括姓名、出生日期、社会安全号码等敏感信息,但没有涉及财务或索赔细节。公司已经采取措施,比如提供身份保护服务,并通知执法部门。 接下来,我需要把这些信息浓缩到一百字以内。要确保包含事件的基本情况:公司名称、受影响人数、时间范围、泄露的数据类型以及公司的应对措施。 可能的结构是:公司名称 + 数据泄露 + 影响人数 + 时间段 + 泄露数据 + 公司应对措施。这样既简洁又全面。 最后检查一下字数,确保不超过限制,并且表达清晰。 </think> Navia Benefit Solutions发生数据泄露事件,影响近270万人。黑客于2025年12月22日至2026年1月15日入侵系统,泄露数据包括姓名、出生日期、社会安全号码等敏感信息。公司已采取措施应对,并提供身份保护服务。 2026-3-19 20:45:17 Author: www.bleepingcomputer.com(查看原文) 阅读量:7 收藏
Navia Benefit Solutions, Inc. (Navia) is informing nearly 2.7 million individuals of a data breach that exposed their sensitive information to attackers.
An investigation into the incident revealed that the hackers had access to the organization's systems between December 22, 2025, and January 15, 2026. However, the company discovered the suspicious activity on January 23.
Navia says that it responded immediately and launched an inquiry to determine the potential impact of the incident.
“The investigation determined that an unauthorized actor accessed and acquired certain information between December 22, 2025, and January 15, 2026,” the company says in the notification to impacted individuals.
Navia is a consumer-focused administrator of benefits that provides services to more than 10,000 employers across the U.S.
The company provides software and customer services for the administration of Flexible Spending Accounts (FSA), Health Savings Accounts (HSA), Health Reimbursement Arrangements (HRA), Commuter Benefits and COBRA Services.
It also helps handle commuter benefits, lifestyle accounts, education benefits, compliance/risk services, and retirement-related offerings.
According to the company, the investigation into the breach revealed that the hacker accessed and may have exfiltrated the following types of data:
- Full name
- Date of birth
- Social Security Number (SSN)
- Phone number
- Email address
- Participation in HRA (Health Reimbursement Arrangements)
- FSA (Flexible Spending Accounts) information
- Consolidated Omnibus Budget Reconciliation Act (COBRA) enrollment information
Navia underlines that the data breach did not expose details about claims or financial information. Nevertheless, the exposed data is enough for threat actors to deploy phishing and social engineering attacks aimed at affected individuals.
The company states that it has reviewed its security posture and data retention policies to identify potential weaknesses that can be improved, and has notified federal law enforcement about the incident.
Customers whose information was exposed will be covered by a free 12-month identity protection and credit monitoring service from Kroll. Letter recipients are also encouraged to consider placing a fraud alert and security freeze on their credit files.
At the time of writing, no ransomware group has claimed the Navia data breach.
Red Report 2026: Why Ransomware Encryption Dropped 38%
Malware is getting smarter. The Red Report 2026 reveals how new threats use math to detect sandboxes and hide in plain sight.
Download our analysis of 1.1 million malicious samples to uncover the top 10 techniques and see if your security stack is blinded.
如有侵权请联系:admin#unsafe.sh