Skip to main content

Orange County’s Credit Union (OCCU) Data Breach Investigation

The Lyon Firm is reviewing data breach claims at Orange County’s Credit Union (OCCU) that may have compromised the personal information of thousands of individuals in California and nationwide. Contact our data breach lawyers to learn more about the data security incident at OCCU and to discuss possible legal action. Free and confidential consultations and case reviews.

What Happened at Orange County’s Credit Union?

On February 2, 2024, Orange County’s Credit Union first detected suspicious activity on their network, and noticed an “unauthorized party” may have accessed to files within their systems. The files allegedly contained personal information of OCCU members. The compromised information could includes names, Social Security numbers, and financial account numbers.

Headquartered in Santa Ana, California, Orange County’s Credit Union offers a wide range of financial products and services to businesses and individuals, including checking and savings accounts, credit cards, loans, insurance products, wealth management services, and digital banking, with over 116,000 members in Orange, Los Angeles, Riverside, and San Bernardino, California.

OCCU says there is no evidence that the information has been misused, but an investigation is ongoing and when personal data is leaked, cybercriminals may sell it on the dark web and put individuals at risk of future incidences of fraud and identity theft.

Victims of a data theft incident are encouraged to remain vigilant and watch out for signs of fraud. It is important to monitor your financial accounts and regularly review your credit history. Carefully review any data breach notification letter you get in the mail sent from Orange County’s Credit Union, which may include more specifics on what information may be at risk.

If you have not received a letter in the post but believe you may have had your data stolen, review the OCCU Notice to Consumers on the California Attorney General’s website.

OCCU is offering a complimentary one-year membership of Experian IdentityWorksSM Credit 3B which can help to monitor your credit for signs of fraud. For extra protection, you may consider placing a fraud alert on your credit reports to notify creditors to verify your identity before opening new accounts. It is also a good idea to get free credit reports from

The National Credit Union Administration (NCUA), the agency that insures deposits at federally insured credit unions, warned in August 2023 that it was seeing an increase in cyberattacks against credit unions and other third-party vendors supplying financial services products.

Multiple credit unions were affected by the massive ransomware attack on the MOVEit file transfer software last year. In December 2023 alone, around 60 American credit unions experienced outages due to a ransomware attack on an IT provider the credit unions use.

If you’ve been impacted by the OCCU data breach, contact The Lyon Firm to consider filing a claim or joining a data breach class action lawsuit to seek compensation for your losses. Our legal team represents plaintiffs in California and all fifty states.

Our privacy attorneys are currently involved in numerous data privacy cases nationwide, and we believe very strongly that any entity that collects and stores personal data has a duty protect it to the best of their ability. If they are negligent and data is stolen, consumers may take legal action.