On October 20, 2023, Wescom Credit Union (“Wescom”) filed a notice of data breach with the Attorney General of Maine after discovering that Barracuda Network, Inc., the vendor that provides security and data protection services to Wescom, experienced a data security incident. In this notice, Wescom explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names and Social Security numbers. Upon completing its investigation, Wescom began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from Wescom Credit Union, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Wescom Credit Union / Barracuda Network data breach. For more information, please see our recent piece on the topic here.
What Caused the Data Breach Affecting Wescom Credit Union?
The Wescom Credit Union data breach was only recently announced, and more information is expected in the near future. However, Wescom’s filing with the Attorney General of Maine provides some important information on what led up to the breach. According to this source, on May 19, 2023, Wescom learned that Barracuda Network, a company that provides security and data protection services to Wescom, announced a widespread vulnerability in its ESG appliance. As a result, unauthorized parties were able to access Barracuda’s ESG appliance dating back to October 2022. After looking into the incident, on May 30, 2023, Barracuda Network confirmed that Wescom data was affected.
In response, Wescom removed the ESG appliance and launched an investigation into the impact of the breach. The Wescom investigation revealed that the ESG had been accessed by an unauthorized party between October 30, 2022 and May 30, 2023.
After learning that sensitive consumer data was accessible to an unauthorized party, Wescom Credit Union reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name and Social Security number.
On October 20, 2023, Wescom Credit Union sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About Wescom Credit Union
Founded in 1934, Wescom Credit Union is a financial institution based in Pasadena, California. Wescom provides the standard complement of banking-related services to its members, including checking & savings accounts, credit cards, auto & personal loans, mortgage loans and investment products. Wescom Credit Union operates more than 20 locations in Southern California. Wescom Credit Union employs more than 796 people and generates approximately $206 million in annual revenue.