Direct Federal Credit Union Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Direct Federal Credit Union regarding its recent cybersecurity incident. The Direct Federal cybersecurity incident may have impacted the privacy of sensitive personal information belonging to an undetermined number of individuals.


Direct Federal is a not-for-profit credit union based in Massachusetts. Founded in 1953, Direct Federal offers an array of rate leading real estate loans, auto loans, visa credit card, high interest savings products and commercial real estate loans.2 Membership of Direct Federal is open to anyone who lives, works (or regularly conducts business in), worships, or attends school in Norfolk or Middlesex Counties; or has an immediate family member that fulfills one of those requirements.3 Headquartered in Needham, Massachusetts, Direct Federal employs over 50 individuals.


Recently, it was reported by multiple online sources that Direct Federal had experienced a data breach impacting the privacy of its customers’ personal information. According to these sources, Direct Federal’s vendor, Wescom Resource Group (WRG), notified members of a security incident where member names, Direct Federal account numbers, and Social Security Numbers may have been compromised.1 As of April 25, 2024, Direct Federal has not disclosed the specific nature of the cybersecurity incident or confirmed whether the incident resulted in a data breach.

If you believe that you have been impacted by the Direct Federal Credit Union cybersecurity incident:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the Direct Federal cybersecurity incident, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in any free credit monitoring services that may be provided by Direct Federal Credit Union;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: