Pacific Aviation Museum alerts donors, patrons about security breach

Pacific Aviation Museum

As a precaution, Pacific Aviation Museum Pearl Harbor sent letters to about 170 people last week to all Museum patrons who had purchased tickets or donated through Vendini for Pacific Aviation Museum Pearl Harbor.

Shortly after the letters were sent, Pacific Aviation Museum was assured by Vendini that none of the museum’s patron data was compromised.

The following is a copy of the letter sent to patrons:

Dear Patron:

We regret to inform you that on April 25, 2013, Vendini, Inc. detected an unauthorized intrusion into its systems. Vendini provides box-office and online ticketing services to hundreds of entertainment venues, which include tour, casino, sports, and arts organizations across the U.S. and Canada. Based on our records, you used a credit card to make a purchase for an event that was processed through Vendini’s service, and your information may have been involved in this incident.

We are actively cooperating with federal law enforcement, and this notification to you was delayed specifically to support law enforcement’s investigation. In addition, a full-scale, internal investigation is under way at Vendini with outside computer forensic and cyber security experts. Although our internal investigation is ongoing, we believe that in late March, a third-party criminal actor used hacking technologies to access our databases and may have accessed your personal information, such as name, mailing address, email address, phone number, and credit card numbers and expiration dates. We do not collect credit card security access codes (e.g., CVV, CVV2, PINs), social security numbers, usernames or passwords.

Upon discovering this intrusion, we engaged computer forensic and cyber security experts to commence an investigation. We implemented enhanced security measures designed to prevent a recurrence of this type of incident. We notified our merchant banks; and credit card companies have been alerted.

In addition, please note the following:

  • To protect against the possibility of identity theft or fraud, we urge you to remain vigilant, and to regularly review your credit card account statements and credit reports for any unauthorized activity.
  • If you suspect that you may be a victim of identity theft or fraud, immediately contact your local law enforcement agency, your State Attorney General’s office and the Federal Trade Commission. We have enclosed a Resources Guide for your reference.
  • Do NOT respond to any requests for sensitive personal information in relation to this incident. Vendini will never request such information via email or telephone unless it is absolutely necessary to respond directly to you regarding how this incident may impact you.

We sincerely regret this incident. Protecting data privacy and security is a top priority for our company. For more information regarding this incident, please contact us toll-free at 1-800-836-0473.

Sincerely,

Mark Tacchi

President and CEO

blog comments powered by Disqus