CUNA said Friday it plans to open a data collection website next week that will allow credit unions to report their costs incurred to replace credit and debit cards compromised in the data breach that involved 40 million payment cards used at Target stores from Nov. 27 to Dec. 15.
In the meantime, CUNA is asking credit unions to maintain a tally of those fraud costs so they can record the information when the website opens.
Also Read: NAFCU Adds Voice to Target Breach Chorus
"As we all know, the Target breach—which has apparently compromised millions of credit and debit cards, many of them held by credit union members—has the potential for creating substantial expense for credit unions and other financial institutions," said CUNA President/CEO Bill Cheney. "We have been in close contact with the payments processors, getting their take on what has happened and the impact on financial services providers, especially credit unions.
Cheney also said CUNA has initiated discussion with key congressional contacts about the responsibility of merchants to protect data and to be accountable for the consequences of data breaches when they occur.
While many credit unions have posted fraud alerts on their websites and social media sites, some cooperatives are issuing new credit and debit cards for thousands of members or were forced to close card accounts.
The $694 million, 55,256-member Bay Federal Credit Union in Capitola, Calif., has reissued new payment cards for 5,000 members who may have been among the millions affected by the Target breach, according to the Santa Cruz Sentinel.
“Our contact center is helping any members that call in with issues,” Tonee Picard, Bay FCU’s executive vice president and chief development officer, told the local newspaper Thursday. “To date, we have not seen significant fraudulent transactions.”
According to the West Hawaii Today newspaper, the $378 million, 42,575-member Hawaii Community Federal Credit Union in Kailua Kona had to close Visa credit and debit card accounts for about 2,000 members.
Out of an abundance of caution, the credit union decided to close the accounts without first notifying members. That decision was made because it was taking too long to call each member, Tricia Buskirk, vice president of corporate development and marketing, told the newspaper.
In Eau Claire, Wis., the $1.3 billion Royal Credit Union said Monday in an e-mail to members that 6,458 member cards—1,219 credit cards and 5,239 debit cards—were among those compromised and there might be more, according to CUNA. The credit union is replacing the cards, which will take 18 to 21 days. Members can use their current card until the new card is reactivated.
The $8.2 billion Golden 1 Credit Union in Sacramento, California’s second-largest credit union, said about 67,000 of its 650,950 members have been affected by Target’s payment card breach.
“Golden 1 is proactively replacing all potentially impacted cards,” said Donna Bland, Golden 1 president/CEO. “The safety and security of our members’ accounts is a top priority for us.”
Meanwhile, the Federal Trade Commission reported that scammers claiming to be Target are sending out phony emails to attempt to trick consumers into giving their personal information.