NAHGA Claims Services Data Breach: SSNs & Medical Information Exposed

On April 13, 2025, NAHGA Claims Services, a national third-party administrator specializing in accident and health insurance claims, discovered unusual activity on its network systems.

An investigation with the help of independent cybersecurity experts revealed that, between April 8 and April 10, 2025, files were accessed and potentially acquired by an unauthorized party. A comprehensive review of the affected files determined that personal information of at least 5,072 individuals was involved, including 264 residents in Texas, 176 in Maine, 26 in New Hampshire, and an undisclosed number of impacted individuals in South Carolina, Vermont and potentially other states.

The exposed data may have included names and additional sensitive details such as Social Security numbers, medical information, insurance policy numbers, and other personally identifiable information (PII) and protected health information (PHI) relevant to insurance claims. Exposure of PII and PHI puts individuals at risk of identity theft and medical fraud.

NAHGA began notifying relevant Attorney Generals' offices in Maine, South Carolina, New Hampshire and Vermont on Nov. 17, 2025, and subsequently the Texas Attorney General's office on Nov. 19, 2025. NAHGA has begun mailing notices to all impacted individuals.

NAHGA Claims Services' response

The company has since implemented enhanced security measures to reduce the risk of future incidents. NAHGA is offering complimentary identity theft protection services through IDX, a leading data breach recovery provider. Impacted individuals are eligible for up to 24 months of credit and CyberScan monitoring, a $1 million insurance reimbursement policy, and fully managed identity theft recovery services.

Those who may have been affected are encouraged to:

• Review account statements and credit reports for suspicious activity
• Consider placing a fraud alert or security freeze on credit files
• Take advantage of the free identity protection services offered
• Report any suspected identity theft to law enforcement or the Federal Trade Commission

For more information, impacted individuals can contact the company's dedicated team at 844-274-4845, Monday through Friday, from 9
am to 9 pm ET.