ALTADENA, Calif.–First City Credit Union has become the latest to confirm it has suffered a data breach, with the breach having occurred in late 2024. 

The $888-million First City has informed the Attorney General of California that it had experienced a data breach in which sensitive personal identifiable information in its care may have been accessed. 

In recent weeks at least four other credit unions have also reported data breaches (see below). 

According to the breach notice, First City  detected a data security incident that involved an unauthorized party gaining access to a portion of its email environment, after which it launched an investigation.

According to the notice filed with the state, the investigation confirmed First City confirmed that sensitive personal information in its systems may have been compromised by an unauthorized third party between Nov. 18 and Nov. 20, 2024. 

Review Undertaken

As a result, First City said it began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. The information exposed potentially includes Social Security number, address, and driver’s license number

First City has begun mailing data breach notification letters to those who might have been affected among its 56,000 members.  It is providing those potentially affected with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. 

Other Recent Breaches

As the CU Daily has reported, other credit unions recently reporting data breaches and ransomware threats have included:

• Heritage South Credit Union https://thecudaily.com/ransomware-group-steals-300gb-of-member-data-threatens-to-publish/
• Lafayette FCU 
• AOD FCU
• Cross Valley Credit Union