A data breach notice purportedly from healthcare company Navvis & Company recently landed in consumers’ mailboxes, raising questions about its legitimacy.
With data breaches so common these days, it’s normal to be skeptical. This article explores whether the Navvis data breach letter is a scam or the real notice, what victims can do, and how to avoid fraud.
Overview of the Navvis Data Breach Letter
In October 2023, certain individuals received letters stating that unauthorized access to Navvis systems occurred between July 12-25, 2023. The letter, dated October 6, 2023, said exposed information may have included names and other personal details like Social Security numbers tailored to each recipient.
To help protect impacted individuals, they offered 12-24 months of free credit monitoring through IDX. Recipients must enroll by January 6, 2024 using provided instructions. Steps to monitor accounts, get credit reports, place fraud alerts and freezes were also outlined.
Employer Reviews About Navvis
Searching Glassdoor reveals Navvis & Company is a real healthcare technology firm founded in 2013 with 201-500 employees. Headquartered in Munich, Germany, the company has an overall 4.4 star rating based on 73 reviews.
The positives highlight the collaborative culture, great leadership and friendly atmosphere.
One software engineer called it a “great company” with “amazing product” and “great management.”
A product manager simply stated “Like it really: people, culture, projects.”
However, some cons mentioned were low salary and limited benefits. One reviewer said “Not good pay for students” while another pointed out the “salary is low.”
Overall the employer reviews present Navvis as a Real company, making it more likely the breach notice letter is not a scam.
Could It Be a Fake Letter from Scammers?
Although Navvis appears legitimate, one should still be wary. Scammers routinely exploit newsworthy breaches by sending fake notifications mimicking real companies.
Deceptive letters may contain spelling errors, request suspicious actions like calling unfamiliar numbers, or ask for money to provide services. The Federal Trade Commission warns these are red flags of a scam.
The Navvis letter seems professionally written and aligned with proper breach response protocol – investigation, consumer notification and offering free monitoring services. Fraudsters are unlikely to provide such robust assistance.
Still, it’s wise to independently verify the letter’s authenticity before clicking links or calling numbers. Contact Navvis directly using info from their official website or LinkedIn page, not the letter.
How to Identify Fraudulent Navvis Data Breach Notification Scams
Here are tips to avoid getting duped by fake breach alerts:
- Verify the source – Contact the company directly using official contact info to confirm the letter’s legitimacy before responding.
- Check for poor writing – Scam letters often contain grammatical errors, unclear language or appear generally unprofessional.
- Look for suspicious requests – Fraudsters may ask for sensitive info or money to “verify identity” or “provide services.” Refuse such requests.
- Guard personal information – Never give out your Social Security number, account details or other sensitive data in response to a breach notice without verifying it first.
- Review credit reports – Order free annual credit reports to check for suspicious activity. Consider freezing credit to block thieves.
- Use common sense – If something seems suspicious, it likely is. Trust your instincts.
What Should You Do If You Fall Victim to a Fraud?
If you provided sensitive information or paid money in response to a fake breach letter, take these steps:
- Contact banks/credit card companies – Alert them to watch for fraudulent charges and consider new account numbers.
- Monitor credit reports – Check for signs of identity theft and report unauthorized activity immediately.
- Change passwords – Reset passwords on compromised accounts to lock out thieves. Make them long and complex.
- File an FTC complaint – Notify the Federal Trade Commission about the fraudulent activities at ReportFraud.ftc.gov.
- Report to the REAL company – Inform the legitimate company whose name was misused about the fraudulent letter.
- Call police – File a report about the scam with local law enforcement. This helps in resolving identity theft issues later.
Frequently Asked Questions About Navvis Data Breach Notice
1. Should I enroll in the IDX Credit monitoring if the letter is real?
Yes, take advantage of the free monitoring. It adds protection by alerting you to suspicious credit activity.
2. What if fraudsters already opened accounts in my name?
Place fraud alerts and credit freezes to stop additional damage. Report identity theft to the FTC and police to start resolving it.
3. Why would scammers send fake data breach notices?
They aim to trick people into sharing valuable personal data or paying supposed “fees” to criminals.
4. If Navvis was breached, should I avoid using their services?
Not necessarily – evaluate their response. Responsible disclosure and providing free monitoring indicates security improvements.
The Bottom Line
After the fraud investigation, here are the some key points:
- The Navvis data breach notice appears legit, but scams exploiting breaches are common.
- Independently verify letters before providing personal information or money.
- Monitor accounts and credit carefully going forward. Enroll in free monitoring if offered.
- Report frauds to the FTC and companies involved. Signs of fraud warrant contacting police.
- Previous breaches mean scammers may have your info. Be vigilant and don’t fall for their tricks.
A healthy skepticism combined with verification and monitoring helps avoid becoming the victim of a breach notice scam. Heed warnings, but take advantage of services if a letter proves real. With vigilance, you can minimize risk.