CU Says Card Data Not Involved in Breach
MONTPELIER, Vt. -- The $508 million New England Credit Union, headquartered in Williston, Vt., has begun fielding member calls as the Vermont State Government announced that one of its servers that contained personal information for about 70,000 current and former Vermonters has been compromised.
The Vermont Agency for Human Services is confirming that one of its computers was hacked by an automated computer program that seeks out security weaknesses, according to stories in the local media.
State officials have said that they cannot tell whether the data had been compromised or not.
David Bard, CEO of the credit union, said that no card information was on the server, which contained information on the CU and about nine other banks and credit unions across the state. They were mandated to provide the data as part of a program to keep track of Vermonters who were not making their child support obligations.
Bard explained that quarterly the CU has to send some data to the agency by State law and that, in previous years, more data than was necessary had been sent. None of this extra data, Bard said, had been deleted so it also may have been compromised.
Bard stressed that the CU, so far, had no evidence of fraud as a result of the breach and was monitoring possibly compromised member accounts.