.png)
Gesa Credit Union Data Breach Lawsuit Investigation
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the Gesa Credit Union data breach.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
About Gesa Credit Union
Gesa Credit Union is a not-for-profit financial cooperative that began in 1953 in Richland, Washington. Originally serving administrative employees at the Hanford site, Gesa has grown into one of the largest credit unions in Washington state, now serving more than 260,000 members.
The credit union expanded rapidly after 1996 when it became a community-chartered institution, opening membership to anyone in Washington. Today, Gesa operates dozens of branches across Washington, Oregon and Idaho, with a focus on community engagement and financial education.
Gesa is known for its commitment to giving back, including millions in community contributions and scholarship programs. Despite its growth, Gesa continues to emphasize its cooperative roots and focus on member benefits.
What Happened?
In August 2025, Gesa Credit Union learned of a data security incident involving Marquis Software Solutions, a former marketing and communications vendor. Marquis detected suspicious activity on its network on Aug. 14, 2025, and determined that an unauthorized third party had accessed and acquired certain files from its systems.
Marquis’ investigation revealed that information related to some Gesa members was involved. On Nov. 26, 2025, Gesa disclosed the incident to the Washington Attorney General, reporting that 151,612 individuals in Washington were affected.
Information Types Exposed:
- First and last name
- Date of birth
- Social Security number
- Financial account information
- Payment card information
- Taxpayer identification number
If an individual’s information was impacted, Marquis will be mailing notice to the last known address on record.
Your Rights and Next Steps
If you received a notice about this data breach, it means your personal information may have been compromised. When sensitive data like Social Security numbers, financial account details or payment card information is exposed, there is a risk of identity theft and fraud.
There are several steps you can take right now:
- Review your credit reports and account statements for suspicious activity or errors
- Take advantage of your right to a free credit report annually from each of the three major credit bureaus: TransUnion, Experian and Equifax
- Consider placing a fraud alert or credit freeze on your credit file to prevent unauthorized accounts from being opened in your name
- Monitor for any signs of identity theft, such as unexpected bills or collection notices
If you have questions about the breach or the letter you received, you can call the dedicated assistance line at 855-403-1764, Monday through Friday, 9 a.m. to 9 p.m. ET (excluding holidays).
You also have the right to file a complaint with the Federal Trade Commission or your state attorney general if you believe your information has been misused.
You May Be Entitled to Compensation
If your information was exposed in the Gesa Credit Union data breach, you may be eligible for compensation. Lawyers are ready to help individuals who have been affected by this incident. By joining a class action lawsuit, you may be able to recover damages for any harm you have suffered as a result of the breach.
To find out if you qualify and to take the next step, complete the below form to join the lawsuit investigation.
.svg)