"The stolen information consists of a combination of identifying and sensitive personal data. This includes names, addresses, phone numbers, and email addresses, as well as dates of birth and U.S. Social Security numbers."
"According to the report, this was an external system breach in which unauthorized individuals exploited a vulnerability in the access control system. This allowed data to be accessed without the required permissions."
"Although there are no indications that financial data or claims systems have been compromised, the risk to those affected remains significant. The combination of personal data makes targeted phishing and other forms of social engineering plausible."
A data breach at Navia, an external provider for HackerOne, exposed personal data of 287 employees. The breach occurred between December 22, 2025, and January 15, 2026, and was discovered on January 23. Affected individuals were informed by mid-March. The stolen data includes names, addresses, phone numbers, email addresses, dates of birth, and Social Security numbers. The breach resulted from unauthorized access to Navia's systems, with no financial data compromised. However, the risk of phishing and misuse of personal data remains high.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]