St. Mary’s Bank is a state-chartered community-based credit union in New Hampshire. On May 26, they discovered that one of their workstations was infected with malware that could have captured anything displayed on the screen. A forensic investigation discovered that 23 workstations could have been infected with the malware as early as February 2013.
Although St. Mary’s did not find any evidence that any personal information was actually acquired by any unauthorized individual, and they have seen no unusual activity in any customer accounts, they started notifying 115,775 New Hampshire residents on July 12 and offered them free credit monitoring and identity theft protection services. They did not indicate whether any non-residents were also being notified.
You can read their notification letter here.