Data-Breach
Two Indiana credit unions recently reported data breaches that may have exposed their members’ personal information to unauthorized third parties.
On Monday, the $577 million Via Credit Union in Marion reported a January data breach that affected 60,853 individuals. Additionally, the $1.8 billion Interra Credit Union in Goshen reported on Jan. 23 a data breach that affected 1,847 persons. Both credit unions filed their data breach notification with the Maine Attorney General’s office.
Recommended For You
“We reviewed the contents of files acquired by the unauthorized third party to determine if they contained any personal information,” Via said in its data breach notification letter to members. "Beginning on January 24, 2025, we determined the identified files contained personal information that included your name, address, date of birth, Social Security number, Visa credit card number, and a form of financial account number.”
When the credit union detected suspicious activity with its computer network, Via said it promptly launched an internal investigation, notified law enforcement and worked to secure its systems. The credit union also hired a forensic security firm to assist with the investigation and ensure the computer network was secure.
“The forensic investigation determined that an unknown, unauthorized third party accessed our computer system between January 18, 2025, and January 20, 2025, and acquired certain files during that time,” Via’s letter read.
Via serves more than 37,000 members.
After Interra Credit Union detected a breach in one employee’s email on Dec. 9, it launched an internal investigation and hired a forensic security firm, which assisted with the investigation and confirmed the security of the credit union’s email system
“The investigation determined that an unauthorized third party accessed the one email account between October 2, 2024 and October 9, 2024, and may have acquired the information contained in the email account,” Interra said in its data breach notification letter to members.
The investigation also determined that the email account contained some members’ personal information. Other than the members’ name, the credit union’s letter did not specify what other personal information may have been accessed by an unauthorized third party.
Interra serves more than 90,000 members.
In their notice of data breach letters, both credit unions said they have no reason to believe that members’ personal information has been misused for fraudulent or identity theft purposes.
Both credit unions offered their members complimentary credit monitoring services for one year.
© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.