Heritage Financial Corporation disclosed a cybersecurity incident in its recent Form 8-K filing dated March 20, 2026. The company reported that on or about March 2, 2026, it detected unauthorized access to an internal file share server used by employees, resulting in the potential exfiltration of files that may contain personal information. Importantly, the incident did not impact customer accounts, systems, or operations, which continued without disruption. Following the detection, the company promptly activated its security incident response plan, taking the affected system offline and engaging external advisors, including a forensic investigation firm and legal counsel, to assess and remediate the situation. The company has also notified its banking regulators, law enforcement, and its cyber insurance carrier. As of the filing date, the company has not determined that the incident is material or that it has had a significant impact on its financial condition or operational results. This incident raises concerns about cybersecurity risks and the potential for future incidents, which could affect investor confidence and the company's reputation in the market.

Press Release distribution

National Press Distribution across U.S. Media. Direct Access to Key Decision Making Editors.