National Institutes of Health Federal Credit Union Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating National Institutes of Health Federal Credit Union (NIHFCU) regarding its recent data breach. The NIHFCU data breach involved sensitive personal identifiable information belonging to an undetermined number of individuals.


NIHFCU is a financial cooperative that serves the employees, contractors, and affiliates of the National Institutes of Health and other healthcare organizations in the Washington D.C. metro area. Established in 1940 by nine federal employees, NIHFCU aims to understand the unique financial needs of those working within the biomedical and healthcare industries. Among the services provided by NIHFU are savings and checking accounts, loans, mortgages, credit cards, and investment options. Today, NIHFCU serves more than 45,000 members.


On May 19, 2023, NIHFCU discovered that it had experienced a data breach in which the sensitive personal identifiable information in its systems may have been accessed. Through its investigation, NIHFCU determined that an unauthorized actor may have accessed this sensitive information on April 11, 2023. On July 5, 2023, NIHFCU began contacting individuals whose information may have been impacted. The type of information exposed includes:

  • Name
  • Social Security number

If you received a breach notification letter from National Institutes of Health Federal Credit Union:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the NIHFCU data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review any breach notice and retain a copy;
  2. Enroll in any free credit monitoring services provided by National Institutes of Health Federal Credit Union;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: