MANCHESTER, N.H. (7/25/13)--St. Mary's Bank in Manchester, N.H., the oldest credit union in the U.S., is warning 115,775 of its current and former members about a security breach that may have compromised their personal information--including transaction records and Social Security numbers.
The credit union discovered malicious software--malware--on an individual employee workstation computer May 26, St. Mary's CEO Ron Covey wrote in a July 12 letter that the credit union began mailing out to members (New Hampshire Business Review July 26).
Immediately after discovering the malware, the $748 million asset credit union brought in a computer security consulting firm to analyze its computer system to eliminate the malware, the Review said.
The malware could have infiltrated 23 of St. Mary's workstation computers beginning in February, the security firm said. The malware captured information as it appeared on individual computer screens, the firm added.
So far there are no signs of unusual activity in member accounts created by the malware and no evidence that members' information had been acquired by unauthorized individuals, Covey said in the letter. However, the credit union urged members to change their online banking passwords.
For affected members, St. Mary's is making available one year of free identity theft protection services and credit-monitoring services through Experian.