Strauss Borrelli PLLC, a leading data breach law firm, is investigating Lafayette Federal Credit Union (“Lafayette Federal”) regarding its recent data breach. The Lafayette Federal data breach involved sensitive personal information belonging to over 75,500 individuals.
ABOUT LAFAYETTE FEDERAL CREDIT UNION:
Lafayette Federal is a credit union based in Maryland. Founded in 1935, Lafayette Federal serves individuals and businesses, with offerings such as checking and savings accounts, home and vehicle loans, credit cards, insurance, and investment services.2,3 Mainly serving the DC area, Lafayette Federal has eight full-service branches but members have access to over 5,000 shared credit union branches and over 30,000 ATMs nationwide.3,4 Headquartered in Rockville, Maryland, Lafayette Federal employs over 50 individuals.
WHAT HAPPENED?
Recently, Lafayette Federal reported to the Attorney General of Maine that it had experienced a data breach in which sensitive personal identifiable information in its care may have been accessed. According to the breach notice, Lafayette Federal recently learned that a third party gained access to one Lafayette Federal employee email account. 1 As a result, Lafayette Federal launched an investigation to determine the nature of the incident.
Through its investigation, Lafayette Federal confirmed that sensitive personal information within the third-party hosted environment may have been compromised on September 16, 2024. As a result, Lafayette Federal began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. On February 5, 2025, Lafayette Federal completed this review. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Driver’s license number or government-issued ID number
- Financial information (e.g. account number, credit debit card number)
On March 20, 2025, Lafayette Federal began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Maine residents, Lafayette Federal is providing affected individuals with a list of the specific types of sensitive information impacted and 12 months of complimentary credit monitoring services. A link to the form breach notification letters that Lafayette Federal filed with the Attorney General of Maine is below.
If you received a breach notification letter from Lafayette Federal Credit Union:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
