Fairmont Federal Credit Union is notifying over 187,000 individuals that their personal and financial information was stolen in a data breach that occurred two years ago. The not-for-profit financial institution, which operates nine branches in West Virginia, discovered the cybersecurity incident on January 23, 2024, nearly four months after the attackers first breached their network.
A comprehensive forensic investigation concluded on August 17, 2025, that files stolen from the credit union's network contained a wide range of sensitive data. The stolen information includes names, dates of birth, Social Security numbers, driver's license numbers, and government ID numbers. Even more alarming, the data also contained full credit card and debit card details, including card numbers, security codes, and PINs. Other highly sensitive information was also compromised, such as IRS PINs, tax ID numbers, routing numbers, and full access credentials.
The Fairmont Federal Credit Union has stated that it is not aware of any incidents of identity theft or financial fraud as a result of the breach. The credit union is now providing written notices to the affected individuals, who will receive 12 to 24 months of free identity theft protection and credit monitoring services.
While the credit union did not name a suspect, the timing of its discovery aligns with when the Black Basta ransomware group added Fairmont Federal Credit Union to its Tor-based leak site. Black Basta is one of the most prolific ransomware gangs, responsible for over 500 victims and over $100 million in ransom payments before it became inactive in January 2025.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
