Posted On May 20, 2022 Consumer Privacy & Data Breaches
May 20, 2022 – First Financial Credit Union (“FFCU”) reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the names, addresses, Social Security numbers, driver’s license number, and financial account information of certain individuals may have been compromised. On April 6, 2022, First Financial Credit Union sent out data breach letters to those individuals whose information was affected by the breach.
The data breach lawyers at Console & Associates, P.C. are going to begin interviewing victims of the breach to determine what damages they sustained and what legal claims may be available to them. If you recently received a NOTICE OF DATA BREACH from First Financial Credit Union, contact us at (866) 778-5500 to discuss your legal options, or submit a confidential contact form, for a free case evaluation.
Below is a portion of the notice that First Financial Credit Union posted to their website:
Dear Valued First Financial Member,
First Financial Credit Union (FFCU) values and respects the privacy of your information, which is why we are writing to notify you of a recent incident that may have involved some of your personal information. We have no reason to believe that your personal information has been misused for the purpose of committing fraud or identity theft, and there is no evidence to date that any member accounts were accessed. We have no indication that the money you’ve entrusted to FFCU is at risk as a result of this incident. We are providing this notice with guidance on what you can do to protect yourself, should you feel it is appropriate to do so.
What Happened. We recently discovered that an unauthorized third party may have gained access to certain FFCU computer files. There is no evidence that this third party gained access to online passwords and logins or to FFCU’s core financial system. Upon learning of the incident, we promptly secured the affected servers to prevent further unauthorized access and began an internal investigation. We also hired a leading forensic security firm to further investigate the incident and confirm the security of our computer servers and network. We also notified law enforcement and are cooperating with their investigation. This investigation determined that the unauthorized third party accessed some files on FFCU’s servers between January 17, 2022 through February 6, 2022.
What Information Was Involved. The unauthorized third party accessed files on our network that contained some personal information about our members. This incident may not have included all past and present members, but we are notifying all such members in an effort to alert them that some of their personal information may have been involved. The involved information varies based on the individual, but may include an individual’s name, address, Social Security number, driver’s license or government ID number, financial account information, and credit and/or debit card information.
What We Are Doing. Out of an abundance of caution we are notifying all past and present members of the situation to ensure that they can take steps to protect themselves if they feel it is appropriate. Although we are not aware of any instances of fraud or identity theft, we are offering a complimentary one-year membership of Experian IdentityWorksSM Credit 3B to individuals who are current or former members. This product helps detect possible misuse of your personal information and provides you with identity protection services focused on immediate identification and resolution of identity theft. IdentityWorks Credit 3B is completely free to you and enrolling in this program will not hurt your credit score. If you wish to enroll in these services, please first contact the phone number included in this letter and an FFCU Member Service Representative will provide you with FFCU’s Engagement Number and your unique Activation Code. You will need to obtain the number and code before you can enroll or contact Experian. In addition to the actions described above, we have taken steps to help reduce the risk of this type of incident occurring in the future, including but not limited to reviewing FFCU’s technical controls to improve our security posture.
What You Can Do. You can find more information by clicking the Additional Important Information button found at the bottom of this email which will provide steps you can take to protect yourself against identity theft or fraud, including the tips provided on fraud alerts, security and credit freezes. We also encourage you to take advantage of the complimentary credit monitoring and identity theft membership that we are offering. Even though it is likely that not everyone receiving this notice had their Social Security number or other personal information involved, we are nevertheless offering credit monitoring to everyone receiving this notice letter, including you.