Overview
- Connex began mailing breach notifications around August 7 to roughly 172,000 members whose personal and financial records were exfiltrated in early June.
- The credit union is providing 12 months of complimentary credit monitoring and identity protection through Cyberscout to all impacted individuals.
- San Francisco law firm Schubert Jonckheer & Kolbe LLP has opened an investigation into whether Connex violated Connecticut’s 60-day breach-notification requirement.
- Connex reports no evidence of unauthorized account or fund access and has posted scam alerts warning members against impersonation phishing and vishing attempts.
- No ransom demands have emerged and no known cybercriminal group has claimed responsibility, leaving the breach’s attribution unresolved.