HOUSTON– A data breach involving MemberSource Credit Union is larger than had been originally reported.
As the CU Daily first reported here, a breach notification filed with the California Attorney General’s office had indicated the $206-million MemberSource CU experienced a data breach in early June of 2026, exposing sensitive personal and financial information belonging to its approximately 15,000 members. However, the number of members believed to be affected by the breach is actually more than a third larger, according to a filing with the Texas Attorney General’s office, in Texas, which indicated the breach has affected 22,308 residents of Texas.
As the CU Daily reported earlier, as is the case in all such data breaches, lawyers are seeking plaintiffs for a potential class action lawsuit.
Ransomware Group Claims Responsibility
“Approximately two weeks after the breach occurred, on June 17, 2025, a ransomware group known as Safepay publicly claimed responsibility for the breach,” according to ClaimDepotcom. “The group posted its claimed on the dark web that it had obtained 50 GB of data from the credit union.”
The types of personal information exposed in the breach included names, Social Security numbers, driver’s license or state identification numbers and financial account information, the report stated.
Notification Letters Sent
MemberSource Credit Union has sent notification letters to individuals whose information may have been affected by the ransomware attack. The credit union is offering affected individuals with detailed guidance about the steps they can take to help protect their personal information. The notice explained how consumers can place fraud alerts and credit freezes with the three major credit reporting bureaus: TransUnion, Experian and Equifax.
As the CU Daily has reported, numerous credit unions have reported data breaches in recent months, including Frontwave Credit Union, Georgia Heritage Financial CU, Alaska Air Group FCU, and others.
One Response
June 2025?