The Data Breach Brief: Week of March 25th, 2026

The following data breaches have been announced this week—make sure you’re in the know.

If you received a data breach notice regarding any of the breaches listed below, act now and take Morgan & Morgan’s data breach quiz to see if you may be eligible for compensation.

Navia Benefit Solutions

Navia Benefit Solutions recently suffered a data breach between December 22, 2025, and January 15, 2026, when threat actors were able to exfiltrate a significant amount of personally identifiable information (PII) of nearly 2.7 million individuals. The exposed data may include:

• Full names
• Dates of birth
• Social Security numbers 
• Phone numbers
• Email addresses
• Health plan information (Health Reimbursement Arrangement (HRA) participation, Consolidated Omnibus Budget Reconciliation Act (COBRA) enrollment information, and information about users' FSAs)

North Texas Behavioral Health Authority

North Texas Behavioral Health Authority reported on March 9, 2026, that it suffered a data breach during an unconfirmed period, during which an unauthorized party accessed and copied the private information of 284,525 victims from its network. The data breach involves sensitive, confidential information, including:

• Full names
• Social Security numbers
• Addresses
• Dates of Birth
• Health insurance information
• Medical information
• Driver’s license numbers

OSI Systems

OSI Systems suffered a ransomware attack on December 25, 2025, when the cybercriminal group INC Ransom accessed its network and stole the sensitive data of 4,900 individuals. The exposed personal information may include: 

• Names
• Social Security numbers
• Financial account information
• Government identification numbers
• Employment records

If you or a loved one were affected by any of these data breaches, you may be entitled to compensation. Find out more in minutes with our online data breach quiz.