A ransomware infection at a cloud IT provider has disrupted services for 60 or so credit unions across the US, all of which were relying on the attacked vendor.

This is according to the National Credit Union Administration, which on Friday told The Register it is fire-fighting the situation with the credit unions downed this week by the intrusion. The NCUA regulates and insures these financial orgs.

“I can confirm that approximately 60 credit unions are currently experiencing some level of outage due to a ransomware attack at a third-party service provider,” the NCUA spokesperson said. “Member deposits at affected federally insured credit unions are insured by the National Credit Union Share Insurance Fund up to $250,000.”

We’re told the unions’ IT provider Ongoing Operations – ironic – was hit by ransomware on Sunday, sparking days of disruption for the biz’s clients. It’s believed the cloud provider was infiltrated via the Citrix Bleed vulnerability.