---
schema_version: "secwatch.filing_event.v1"
accession: "0001140361-26-027441"
form_type: "8-K"
ticker: "NAVI"
cik: "0001593538"
company_name: "NAVIENT CORP"
filed_at: "2026-07-02T20:15:27+00:00"
generated_at: "2026-07-02T20:17:12.878587+00:00"
event_type: "cyber"
sentiment: "negative"
materiality_score: 0.7
calibrated_materiality_score: 0.7
confidence: "high"
source: SEC EDGAR
---

# Navient discloses ransomware attack at third-party law firm exposing borrower data

## Summary
- Incident discovered June 8, 2026; involved ransomware at a law firm providing legal services to Navient.
- Exposed borrower data includes names, dates of birth, addresses, and Social Security numbers.
- No evidence of unauthorized access to Navient's own systems; operations and customer services unaffected.
- Company determined incident material on June 29, 2026 due to volume and sensitivity of data.
- Navient does not expect the incident to have a material impact on financial condition or results.

## SEC filing metadata
- accession: 0001140361-26-027441
- form_type: 8-K
- ticker: NAVI
- cik: 0001593538
- company_name: NAVIENT CORP
- filed_at: 2026-07-02T20:15:27+00:00
- event_type: cyber
- sentiment: negative
- materiality_score: 0.7
- calibrated_materiality_score: 0.7
- confidence: high
- sec_items: 1.05
- EDGAR index: https://www.sec.gov/Archives/edgar/data/1593538/000114036126027441/0001140361-26-027441-index.htm
- EDGAR primary document: https://www.sec.gov/Archives/edgar/data/1593538/000114036126027441/ef20077249_8k.htm

## Machine-readable alternates
- HTML: https://secwatch.observer/filing/0001140361-26-027441
- JSON: https://secwatch.observer/filing/0001140361-26-027441.json
- Plain text: https://secwatch.observer/filing/0001140361-26-027441.txt

This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.
