Navy Federal Credit Union disclosed a data breach involving unauthorized access to members’ personal information. The breach occurred between April and May 2024, when two former employees allegedly obtained sensitive data and shared it with external parties without authorization. Compromised information includes members’ names, dates of birth, addresses, phone numbers, email addresses, account details, and partial Social Security numbers. Upon discovering the incident, Navy Federal terminated the employees and reported the matter to law enforcement, which is now involved in the investigation.
To support affected members, the credit union is offering two years of complimentary identity theft monitoring through IdentityForce, a TransUnion service. This includes credit monitoring, dark web surveillance, and fraud resolution assistance. Members are encouraged to take proactive steps, such as regularly reviewing account statements, monitoring free credit reports, and changing online account passwords to safeguard against potential misuse of their information. Navy Federal assured members that protecting their financial security and personal information remains a top priority.
The organization has also provided instructions for placing a security freeze on credit reports, which prevents unauthorized access to credit files. This measure can be implemented free of charge through any of the three major credit reporting agencies—Equifax, Experian, or TransUnion. Members are advised that while a security freeze provides enhanced protection, it may also delay or interfere with activities such as obtaining loans or credit approvals. Navy Federal is committed to educating members on the steps they can take to minimize risks associated with identity theft.
Navy Federal expressed regret over the breach and the inconvenience caused to its members, reaffirming its commitment to regaining their trust. The credit union emphasized its focus on improving internal controls and continuing its efforts to prevent similar incidents in the future. Members impacted by the breach are encouraged to remain vigilant, report any suspicious activity to financial institutions or law enforcement, and utilize the available resources to protect their personal and financial well-being.
Reference:
