Michigan State University Federal Credit Union, or MSUFCU, released a message via Twitter regarding messages members received Jan. 1 about suspicious activity on their accounts.
"We are in the process of crediting the amount of the fraudulent transactions to all affected accounts," the credit union said in a Twitter statement. "As a reminder, you are not liable for any fraudulent transactions that occur on your account."
The notices released via text, email or phone warned MSUFCU members of unauthorized international transactions, according to a press release from Attorney General Dana Nessel released Jan 2.
According to public information regarding data breaches from the Attorney General's office, credit and debit card numbers are classified under the more sensitive category of information. Those notified of unauthorized transactions are urged to immediately contact their card issuer, according to the press release.
"There was absolutely no personal information that was released. There was a fraudulent transaction that came through from a merchant LoveWorld TV and so about 2,300 of our members saw fraudulent transactions come through and that money has been reversed," MSUFCU Chief Marketing Officer Deidre Davis said. "So there was no personal information whatsoever that had gotten out there."
The Attorney General's office was made aware of this incident after noticing media reports and social media postings, according to the press release. Nessel's Corporate Oversight Division is currently working with MSUFCU to determine the impact on Michigan residents.
"This is another example of how fragile our information infrastructure is, and how vulnerable all of us are to cyber hacking,” said Nessel in a statement. “Unfortunately, here in Michigan, my office is forced to rely on media reports that alert us to these terrible situations because – unlike most other states – we have no law on the books that requires our office to be notified when customers are compromised. I am determined to get information quickly and accurately to take more proactive measures to protect our residents.”
Attorney General Dana Nessel advised residents to find out which information has been compromised and to take action accordingly. The press release emphasized the following options:
- Pull a free credit report at annualcreditreport.com or call 877-322-8228
- Put a fraud alert on your credit file. The Federal Trade Commission provides a checklist for this.
- Use caution when receiving unsolicited calls or emails from what appears to be Capital One. Hang up, do not reply and call the number provided on your card. This is a way for scams to collect more data from consumers.
- Take advantage of any free services offered as a result of this breach.
- Use two-factor authentication on your online account if available.