Flagship Bank, also known as West Florida Bank Corporation, recently disclosed a data breach impacting 3,996 individuals. The breach stemmed from a social engineering attack that allowed unauthorized access to sensitive systems in April 2025. Affected individuals are now being notified and offered credit monitoring services.
Flagship Bank’s Data Breach Investigation
On May 7, 2025, Flagship Bank became aware of suspicious activity within its network environment. The bank promptly secured its systems and launched an internal investigation to determine the scope and impact of the incident. According to the findings, unauthorized access occurred on April 15, 2025, as the result of a social engineering scheme.
Social engineering attacks often involve deceptive tactics designed to trick employees into granting access to sensitive systems. In this case, an unauthorized party was able to gain access to Flagship Bank’s environment. While the bank has stated that it has no evidence of identity theft or fraud directly linked to the breach, it conducted a thorough review of relevant systems to determine what information may have been exposed.
The internal review process recently concluded, confirming that certain personal information was present in the affected systems. As a result, Flagship Bank began notifying impacted individuals. The total number of persons affected by this breach is 3,996, including two residents of Maine.
On or about February 13, 2026, written notice was provided to the two affected Maine residents. Flagship Bank has also notified relevant state and federal regulators, as required, as well as the three major consumer reporting agencies: Equifax, Experian, and TransUnion.
Following the discovery of the breach, Flagship Bank notified federal law enforcement and began implementing additional safeguards. These measures include strengthening administrative and technical security controls and providing enhanced cybersecurity training to personnel. The bank has emphasized its commitment to protecting customer information and preventing similar incidents in the future.
Despite these efforts, the exposure of highly sensitive personal and financial information can create long-term risks. Even when no misuse has yet been detected, individuals may face an increased risk of identity theft, fraudulent account activity, and financial harm.
At Class Action U, we believe consumers deserve transparency and accountability when financial institutions fail to adequately safeguard sensitive data. When organizations collect and store personal information, they take on a responsibility to protect it. If that responsibility is breached, affected individuals have the right to explore their legal options.
When Did This Breach Occur?
Unauthorized access to Flagship Bank’s systems occurred on April 15, 2025.
The suspicious activity was discovered on May 7, 2025, at which time the bank initiated its investigation.
Written notice to Maine residents was provided on or about February 13, 2026.
What Information Was Breached?
The information that could have been subject to unauthorized access includes:
This combination of personal and financial data significantly increases the risk of identity theft and fraud, particularly when Social Security numbers and banking details are involved.
What You Can Do
If you received a data breach notification from Flagship Bank, taking proactive steps can help protect your financial security:
-
Enroll in the complimentary 12-month credit monitoring services offered through TransUnion and Cyberscout.
-
Review your bank and credit card statements carefully for unauthorized transactions.
-
Obtain free credit reports from Equifax, Experian, and TransUnion and monitor them for unfamiliar accounts or inquiries.
-
Consider placing a fraud alert or credit freeze on your credit file to prevent new accounts from being opened in your name.
-
Report any suspected identity theft or fraudulent activity immediately to your financial institution, the Federal Trade Commission, and your state Attorney General.
Remaining vigilant is critical. Identity theft can occur months or even years after a breach. If you believe your information was exposed, you may also want to explore whether you qualify to join a class action lawsuit.
File a Data Breach Lawsuit Against Flagship Bank
If your personal information was exposed in the Flagship Bank data breach, you may be eligible to pursue compensation. Data breaches involving Social Security numbers and financial account information can lead to serious consequences, including fraudulent transactions, damaged credit, and significant stress.
Class action lawsuits allow individuals affected by the same incident to come together to hold organizations accountable. You may be entitled to compensation for the time spent monitoring your accounts, out-of-pocket losses, and the increased risk of identity theft.
Contact us at Class Action U, where we’ll connect you with a lawyer skilled in class action lawsuits. If you’ve been contacted about this breach, received notice, or discovered you were impacted, fill out our quick, easy, and secure form to sign up. There is no cost to reach out to our legal partner and no obligation after speaking with someone from our team.
