Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Gesa Credit Union

Gesa Credit Union Vendor Cyber Rating & Cyber Score

gesa.com

Gesa Credit Union stands as one of the largest member-owned credit unions in the Pacific Northwest, proudly serving more than 300,000 members across Washington, Oregon, and Idaho with over $6.4 billion in assets. Headquartered in Richland, WA, Gesa delivers a comprehensive array of consumer, mortgage, and commercial banking solutions designed to empower our communities. With more than 50 branches and loan centers—including two vibrant campus branches at Washington State University plus 25 student-run high school branches across Washington—we combine local roots with innovative services to help our members succeed.


GCU A.I CyberSecurity Scoring

GCU
Company Information
Website:http://www.gesa.com
Employees number:761
Number of followers:7,304
NAICS:52
Industry Type:Financial Services
Homepage:gesa.com
GCU Risk Score (AI oriented)
Between 550 and 599
logo
GCUFinancial Services
Updated:
05/04/2026
584/1000
Very Poor
Ca
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
GCU Global Score (TPRM)
xxxx
logo
GCUFinancial Services
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

GCU
GCUVery Poor
Current Score
584Ca (VERY POOR)
01000
2 incidents
-96.5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
594Before Incident
JUNE 2026
593Before Incident
MAY 2026
587Before Incident
APRIL 2026
587Before Incident
MARCH 2026
584Before Incident
FEBRUARY 2026
579Before Incident
JANUARY 2026
577Before Incident
DECEMBER 2025
694Before Incident
Ransomware
04 Dec 2025GCU
Gesa Credit Union Data Breach Investigation

Gesa Data Breach via Third-Party Vendor (Marquis Software Solutions)

570After Incident
CRITICAL-124
GES1764896431
Recently, Gesa reported to the Attorney General of Washington that it had experienced a data breach in which sensitive personal identifiable information in its care may have been compromised. According to the breach notice, on August 14, Marquis Software Solutions (“Marquis”), a third-party vendor for Gesa, detected suspicious activity on its network and determined that it had experienced a ransomware attack.1 As a result, Marquis launched an investigation to determine the nature of the incident. Through its investigation, Marquis confirmed to Gesa that sensitive personal information in its systems may have been accessed and acquired by an unauthorized third party during the breach. As a result, Marquis began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes: Name Social Security number Address Phone number Taxpayer identification number Financial account information without security or access codes Date of birth As a result of the breach, on behalf of Gesa, Marquis began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Washington residents, Gesa and Marquis are providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the breach
INCIDENT DETAILS -
TYPE
Data Breach, Ransomware
IMPACT
Data Compromised: Sensitive personal identifiable informationSystems Affected: Marquis Software Solutions networkIdentity Theft Risk: HighPayment Information Risk: Moderate
DATA BREACH
NameSocial Security numberAddressPhone numberTaxpayer identification numberFinancial account information without security or access codesDate of birthSensitivity Of Data: HighPersonally Identifiable Information: Yes
NOVEMBER 2025
693Before Incident
OCTOBER 2025
692Before Incident
SEPTEMBER 2025
691Before Incident
AUGUST 2025
758Before Incident
Breach
14 Aug 2025GCU
Gesa Credit Union Data Breach Lawsuit Investigation

Gesa Credit Union Data Breach via Marquis Software Solutions

689After Incident
CRITICAL-69
GES1764878550
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the Gesa Credit Union data breach. If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation. About Gesa Credit Union Gesa Credit Union is a not-for-profit financial cooperative that began in 1953 in Richland, Washington. Originally serving administrative employees at the Hanford site, Gesa has grown into one of the largest credit unions in Washington state, now serving more than 260,000 members. The credit union expanded rapidly after 1996 when it became a community-chartered institution, opening membership to anyone in Washington. Today, Gesa operates dozens of branches across Washington, Oregon and Idaho, with a focus on community engagement and financial education. Gesa is known for its commitment to giving back, including millions in community contributions and scholarship programs. Despite its growth, Gesa continues to emphasize its cooperative roots and focus on member benefits. What Happened? In August 2025, Gesa Credit Union learned of a data security incident involving Marquis Software Solutions, a former marketing and communications vendor. Marquis detected suspicious activity on its network on Aug. 14, 2025, and determined that an unauthorized third party had accessed and acquired certain files from its systems. Marquis’ investigation r
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Sensitive personally identifiable informationIdentity Theft Risk: High
DATA BREACH
Type Of Data Compromised: Personally identifiable informationSensitivity Of Data: HighData Exfiltration: YesPersonally Identifiable Information: Yes

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for GCU ?
?
What was GCU's A.I Rankiteo Cyber Score in June 2026 ?
?
What was GCU's A.I Rankiteo Cyber Score in May 2026 ?
?
What was GCU's A.I Rankiteo Cyber Score in April 2026 ?
?
What was GCU's A.I Rankiteo Cyber Score in March 2026 ?
?
What was GCU's A.I Rankiteo Cyber Score in February 2026 ?
?
What was GCU's A.I Rankiteo Cyber Score in January 2026 ?
?
What was GCU's A.I Rankiteo Cyber Score in December 2025 ?
?
What was GCU's A.I Rankiteo Cyber Score in November 2025 ?
?
What was GCU's A.I Rankiteo Cyber Score in October 2025 ?
?
What was GCU's A.I Rankiteo Cyber Score in September 2025 ?
?
What was GCU's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on GCU's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with GCU ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view GCU's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?