Appalachian Community Federal Credit Union hit by cyberattack claimed by Qilin ransomware gang

Appalachian Community Federal Credit Union (ACFCU) reports a ransomware attack that led to the theft of member data. The credit union serves members across Tennessee, Virginia, and Kentucky.

The credit union first noticed system disruptions on October 7, 2025, shut down their network offline and hired forensic experts to investigate. The investigation confirmed that attackers customer data containing sensitive personal details. 

The Qilin ransomware group claimed the attack and on November 18, 2025, the group posted 75 GB of the stolen data on their dark web leak site. This dataset reportedly includes over 76,000 internal files, ranging from financial records to employee information.

The compromised data includes:

• Full names
• Social Security numbers (SSNs)
• Financial account information
• Internal operational documents

The number of affected individuals is not disclosed. ACFCU reported the incident to authorities and is providing affected members with credit monitoring. They suggest that members watch their bank statements and put freezes on their credit reports.