First Commonwealth Federal Credit Union 100 to 5000 Settlement for June 2024 Data Breach Exposure

In June 2024 First Commonwealth Federal Credit Union disclosed a data breach that exposed members’ private information, and a class action settlement now offers eligible people payouts ranging from $100 to $5,000 with a claims deadline of 2/18/26; the settlement website indicates no proof of specific losses is required to participate. Lawsuits like this typically allege that the financial institution failed to adequately safeguard personally identifiable information (PII), triggering claims for negligence, breach of contract, and violations of state data‑breach notification laws or consumer‑protection statutes. For affected members, the settlement monetizes potential harms—identity theft remediation, fraud monitoring, and distress—without the need for individualized proof, which can speed recovery for large groups of claimants. Beyond this specific case, the lawsuit reflects broader industry and regulatory pressures on credit unions and banks to strengthen cybersecurity and incident response. Federally insured credit unions must follow guidance from regulators such as the National Credit Union Administration (NCUA) and federal requirements under the Gramm‑Leach‑Bliley Act (GLBA) to protect customer data, and incidents often draw FTC or state attorney‑general scrutiny; similar class actions followed the Equifax and Capital One breaches, which reshaped expectations around breach notification, monitoring services, and settlement structures. The settlement underscores both the practical consequences for consumers and the continuing trend of litigation and regulatory enforcement pushing financial institutions toward tighter data‑security practices.