Important Update About Debit Cards

Please activate and begin using your Sound debit cards immediately. Your Bank of Washington debit cards will no longer work.

Visit for more details.


We take your privacy and the security of your information very seriously. You may have been contacted recently because your credit or debit card was affected by a recent security breach. For more information about some of the recent data compromises, we have provided the following links:


Based on the investigation to date, around July 1, 2017, malware began running on certain point of sale systems at potentially all Saks Fifth Avenue, Saks OFF 5TH and Lord & Taylor locations in North America.

Saks Fifth Avenue Notice of Data Breach


On March 28, Delta was notified by [24], a company that provides online chat services for Delta and many other companies, that [24] had been involved in a cyber incident. It is our understanding that the incident occurred at [24] from Sept. 26 to Oct. 12, 2017, and that during this time certain customer payment information for [24] clients, including Delta, may have been accessed – but no other customer personal information, such as passport, government ID, security or SkyMiles information was impacted.

Delta Airlines Statement on [24] Cyber Incident


Krebs on Security reported, the Web site for the American chain of bakery-cafe fast casual restaurants by the same name, leaked millions of customer records — including names, email and physical addresses, birthdays and the last four digits of the customer’s credit card number — for at least eight months before it was yanked offline on April 2, 2018.

Krebs on Security Report on Panera Data Breach


On March 25, 2018, we became aware that during February of this year an unauthorized party acquired data associated with MyFitnessPal user accounts. The affected information included usernames, email addresses, and hashed passwords - the majority with the hashing function called bcrypt used to secure passwords.

MyFitnessPal Notice of Data Breach


March 2018 | Applebee's Data Breach

RMH Franchise Holdings warned that of the 167 Applebee's restaurants it owns and operates, 166 of them suffered a data breach in which point-of-sale systems were infected with malware designed to capture payment cards for anyone who dined at the restaurants.


March 2018 | Orbitz Data Security Incident

While conducting an investigation of a legacy Orbitz travel booking platform (the “platform”), Orbitz determined on March 1, 2018 that there was evidence suggesting that, between October 1, 2017 and December 22, 2017, an attacker may have accessed certain personal information, stored on this consumer and business partner platform, that was submitted for certain purchases made between January 1, 2016 and June 22, 2016 (for Orbitz platform customers) and between January 1, 2016 and December 22, 2017 (for certain partners’ customers).


September 2017 | Whole Foods Payment Card System Data Breach

The investigation determined that unauthorized software was present on the point of sale system at certain venues. The software copied payment card information — which could have included payment card account number, card expiration date, internal verification code, and cardholder name — of customers who used a payment card at these venues at dates that vary by venue but are no earlier than March 10, 2017 and no later than September 28, 2017.


September 2017 | Sonic Drive-In Data Breach

Sonic Drive-In discovered that credit and debit card numbers may have been acquired without authorization as part of a malware attack experienced at certain Sonic Drive-In locations.


September 2017 | Equifax Data Breach

On September 7, 2017, Equifax announced a cybersecurity incident potentially impacting approximately 143 million U.S. consumers. Criminals exploited a U.S. website application vulnerability to gain access to certain files. Based on the company's investigation, the unauthorized access occurred from mid-May through July 2017.


June 2017 | Sabre’s Data Breach Affects Hard Rock, Loews Hotels

The Sabre Hospitality Solutions SynXis Central Reservation System (SHS reservation system) facilitates the booking of hotel reservations made by consumers through hotels, online travel agencies, and similar booking services. Following an examination of forensic evidence, on June 6, 2017, Sabre began notifying certain customers and partners that use or interact with the SHS reservation system that an unauthorized party gained access to account credentials that permitted unauthorized access to payment card information, as well as certain reservation information, for a subset of hotel reservations processed through the SHS reservation system.


If you have any questions or concerns, please contact our Customer Service and Support Center at (425) 921-2432.

You can also find helpful tips for preventing fraud and identity theft in our Security Center.

(425) 921-2432 or (877) 921-2432
M–Th - 9:00 a.m.–5:30 p.m. (Edmonds and Lynnwood) | M–Th - 9:00 a.m.–5:00 p.m. (Everett, Mukilteo, Redmond)
Friday - 9:00 a.m.–6:00 p.m. (All Branch Offices)

 NCUAlogoBW  EQUAL-HOUSING.clear.150dpi 

Insured by NCUA. Equal Housing Opportunity. 

Go to top