MemberSource Data Breach: 31k Individuals Impacted

MemberSource Credit Union, a credit union based in Houston, Texas, experienced a data breach on June 3, 2025, that exposed sensitive personal and financial information belonging to its members.

Approximately two weeks after the breach occurred, on June 17, 2025, a ransomware group known as Safepay publicly claimed responsibility for the breach. The group posted its claimed on the dark web that it had obtained 50 GB of data from the credit union.

The types of personal information exposed in the breach included names, Social Security numbers, driver's license or state identification numbers and financial account information.

The breach was disclosed to the attorneys general offices of California, Indiana, Massachusetts, Montana, Texas and Vermont starting on May 8, 2026.

The total number of individuals affected across the United States was determiend to be 31,046, including 22,308 residents of Texas were impacted.

MemberSource Credit Union's response to the breach

MemberSource Credit Union sent notification letters to individuals whose information may have been affected by the ransomware attack.

In its notification, the credit union provided affected individuals with detailed guidance about the steps they can take to help protect their personal information. The notice explained how consumers can place fraud alerts and credit freezes with the three major credit reporting bureaus: TransUnion, Experian and Equifax.

The notification informed consumers about their right to file police reports if they experience identity theft or fraud.

MemberSource Credit Union can be reached by mail at 10100 Richmond Ave., Houston, TX 77042, or by phone at 713-627-4000. Phone support is available Monday through Friday from 9 a.m. to 5 p.m. and Saturday from 9 a.m. to 1 p.m. CST.