Am I the only one to receive a letter (actually 2 about 3 weeks apart) from the vendor for the Villages Box Office advising that their credit card data base had been compromised? Guess I'll just have to hop in the car and drive over to their location. I'm watching my card accounts very closely and plan to go ahead and cancel them.

I sure never saw a general appeal to the residents in the Daily Sun - that may have been appropriate, but maybe it's no big deal, though their letter sure sounded like a very big deal..

We received the warning letter also. It was for a transaction with the box office for tickets for a show at the Savannah Center.

The warning is legitimate and we'll be cancelling the credit card.

Our bank closed our credit card several months ago when the noticed some odd transactions on our account. The ticket vendor notified us just two weeks ago...glad our bank is on top of things!!!

Haven't rec'd any notice. Do you think the compromise happened recently?

Haven't rec'd any notice. Do you think the compromise happened recently?

Cancelled this card already and replaced with a new number. Transaction was in December, 2011. I am wondering why this information is not purged and deleted from their systems once the transaction had completed?

This is a copy of actual message we received:

IMPORTANT INFORMATION. PLEASE READ IN ITS ENTIRETY.

May 23, 2013

Dear Patron:

We regret to inform you that on April 25, 2013, Vendini, Inc. detected an unauthorized intrusion into its systems. Vendini provides box-office and online ticketing services to hundreds of entertainment venues, which include tour, casino, sports, and arts organizations across the U.S. and Canada. Based on our records, you used a credit card to make a purchase for an event that was processed through Vendini’s service, and your information may have been involved in this incident.

We are actively cooperating with federal law enforcement, and this notification to you was delayed specifically to support law enforcement’s investigation. In addition, a full-scale, internal investigation is under way at Vendini with outside computer forensic and cyber security experts. Although our internal investigation is ongoing, we believe that in late March, a third-party criminal actor used hacking technologies to access our databases and may have accessed your personal information, such as name, mailing address, email address, phone number, and credit card numbers and expiration dates. We do not collect credit card security access codes (e.g., CVV, CVV2, PINs), social security numbers, usernames or passwords.

Upon discovering this intrusion, we engaged computer forensic and cyber security experts to commence an investigation. We implemented enhanced security measures designed to prevent a recurrence of this type of incident. We notified our merchant banks; and credit card companies have been alerted.

In addition, please note the following:

To protect against the possibility of identity theft or fraud, we urge you to remain vigilant, and to regularly review your credit card account statements and credit reports for any unauthorized activity.
If you suspect that you may be a victim of identity theft or fraud, immediately contact your local law enforcement agency, your State Attorney General’s office and the Federal Trade Commission. We have enclosed a Resources Guide for your reference.
Do NOT respond to any requests for sensitive personal information in relation to this incident. Vendini will never request such information via email or telephone unless it is absolutely necessary to respond directly to you regarding how this incident may impact you.

We sincerely regret this incident. Protecting data privacy and security is a top priority for our company. For more information regarding this incident, please contact us toll-free at 1-800-836-0473 or visit us at Box Office Software. Ticket Software. Ticket Printing. (http://www.vendini.com/info).

Sincerely,


Mark Tacchi
President and CEO

Thanks for the heads up...

Does anyone know if this applies only to those who purchased tickets online?

So, if you only bought tickets via credit card at the walk up window, then there was no vulnerability?

[FONT="Arial Black"][Thank you. I bought tickets in person. Happy to see something here on TOTV. /FONT]

If security and privacy is such a concern for them why didn't they put these measures in place before. It's is another reason I hate even giving my SS number to the doctor's offices. A simple break in and someone can have all your information and they won't be looking at your test results but the page with your name, address, dob, phone number and SS number.

Thanks for the heads up...

Does anyone know if this applies only to those who purchased tickets online?

So, if you only bought tickets via credit card at the walk up window, then there was no vulnerability?

After a very long hold time waiting for Vendini (06-11-13 2:05PM 1-800-836-0473) the representative said they do handle the transactions at the walk up windows through their system.

Our tickets were bought on line and printed at home....right before Christmas for the Doo Wops at Savannah and Church on the Square

received this same letter-called Vendini-they said they have found no unauthorize use of my card or anyone that has used a card to purchase at Villages Box Office-still scary though-monitor your statements

Got the same notice. Since we used two different credit cards to purchase tickets though two difference sources, we weren't sure what company this was for. Nice to know it is for the Village's Box office. I always monitor all credit card accounts closely, so thankfully, nothing unusual has shown up. Thanks for the information so I know where the breech was.

Only use CC's and not debit.

just got my letter today and it's unclear if my credit card has been compromised for sure. I have never made any box office purchases online but I have done so at the window.

Just got my letter today also - haven't bought anything at the Box Office in months. BUT - the letter seems to imply that although the "break-in" was in March/April, Vendini had the CC information stored in their server farm so our (all of us) info could have been gathered/handled by Vendini from transactions made many, many months ago. Best we can do is watch the credit card charges. Since Vendini does not (per their letter) collect the card PIN, your name, SSN, password, etc, it could have been much worse. Doing a credit check with one or more of the three big three companies might be good for piece of mind.

We received a letter this week from Vendini Inc. claiming that there was unauthorized intrusion into their system. Vendini provides box-office & on-line ticketing services to hundreds of entertainment venues which include tours, sports, casino & arts organizations across the US & Canada.
This letter states that we used a credit card to make a purchase for an event that was processed through Vendini's service and that our information may have been involved in this incident.

We have not made a purchase for any events. We have never heard of Vendini Services and we received a phone call from friends of our saying they received the identical letter in their mail today.

Just wondering how many of you members have received this letter and what you all make of it.
Thanks for your input.

I don't believe we have recieved one yet. Sounds like a fishing sceme to me. Really sounds to me like a scam to get your personal information and they are targeting seniors living in this area if your friends recieved them too.

Just call them - the # on letter.. I received email. It was for tickets at Savannah Center- they will give you date of event, date you purchased and either last 4 numbers of credit card or name of credit card. I had card cancelled and got a new card number . Have heard of others receiving this notice.

Vendini is the company that handles ticketing for The Villages (online and at the Villages Box Offices ) Several people have received this letter. See this other thread.

https://www.talkofthevillages.com/forums/villages-florida-general-discussion-73/credit-card-compromise-box-office-vendor-79739/

(The two threads have now been merged)

I called Vendini and was told date of transaction using my card, date of event at Savannah, and either my last 5 # of credit card or card name. I immediately cancelled card and got a new card number. How could Vendini know if there was an unauthorized use of your card? Only your card company could tell that....the question is did you use your card--someone hacked into their system and now has your info...

I stand corrected. Thank's Ray for clearing that up. Glad to hear it is legit.

Why haven't we heard about this from the front page of the Daily Sun. May be interpreted as anti-villages, but it is sure something that needs to be spread and reported on. They don't generally shy away from scam reports.

Cancelled this card already and replaced with a new number. Transaction was in December, 2011. I am wondering why this information is not purged and deleted from their systems once the transaction had completed?

This is a copy of actual message we received:

IMPORTANT INFORMATION. PLEASE READ IN ITS ENTIRETY.

May 23, 2013

Dear Patron:

We regret to inform you that on April 25, 2013, Vendini, Inc. detected an unauthorized intrusion into its systems. Vendini provides box-office and online ticketing services to hundreds of entertainment venues, which include tour, casino, sports, and arts organizations across the U.S. and Canada. Based on our records, you used a credit card to make a purchase for an event that was processed through Vendini�s service, and your information may have been involved in this incident.

We are actively cooperating with federal law enforcement, and this notification to you was delayed specifically to support law enforcement�s investigation. In addition, a full-scale, internal investigation is under way at Vendini with outside computer forensic and cyber security experts. Although our internal investigation is ongoing, we believe that in late March, a third-party criminal actor used hacking technologies to access our databases and may have accessed your personal information, such as name, mailing address, email address, phone number, and credit card numbers and expiration dates. We do not collect credit card security access codes (e.g., CVV, CVV2, PINs), social security numbers, usernames or passwords.

Upon discovering this intrusion, we engaged computer forensic and cyber security experts to commence an investigation. We implemented enhanced security measures designed to prevent a recurrence of this type of incident. We notified our merchant banks; and credit card companies have been alerted.

In addition, please note the following:

To protect against the possibility of identity theft or fraud, we urge you to remain vigilant, and to regularly review your credit card account statements and credit reports for any unauthorized activity.
If you suspect that you may be a victim of identity theft or fraud, immediately contact your local law enforcement agency, your State Attorney General�s office and the Federal Trade Commission. We have enclosed a Resources Guide for your reference.
Do NOT respond to any requests for sensitive personal information in relation to this incident. Vendini will never request such information via email or telephone unless it is absolutely necessary to respond directly to you regarding how this incident may impact you.

We sincerely regret this incident. Protecting data privacy and security is a top priority for our company. For more information regarding this incident, please contact us toll-free at 1-800-836-0473 or visit us at Box Office Software. Ticket Software. Ticket Printing. (http://www.vendini.com/info).

Sincerely,


Mark Tacchi
President and CEO

This happened to me at the Shell Station on 466 a couple of years ago. All of these places that accept credit/debit cards send their transactions to clearing houses such as this Company. In my case, I couldn't find out who the Shell station was using so at least you know here. My CU called me and asked if I had been in Bangkok in the last week. And, ON THE SAME DAY, the number was being used at ATMs in THE PHILLIPINES. The CU stopped the transactions, refunded the money that had been withdrawn and did their investigation. My new card arrived a day or two later. Now, I never use a debit card at a gas station. I only use one credit card for routine transactions. I got Lifelock. It's ugly out there.

We have been hit with credit card fraud...last used the card at the Lighthouse Restaurant and not much other use prior to that..but went to Walmart and they refused the card. Called in and someone had just charged $260 to Facebook advertising or someone similar....not a good way to start our holiday.

Sadly it is a very common happening. We got hit with credit card fraud this past December which I thought was bad enough until we were victims of identity theft this past April. This too shall pass so get yourself a new card and enjoy your vacation.

We have been hit with credit card fraud...last used the card at the Lighthouse Restaurant and not much other use prior to that..but went to Walmart and they refused the card. Called in and someone had just charged $260 to Facebook advertising or someone similar....not a good way to start our holiday.

How can you be sure that the Lighthouse restaurant compromised your card? Last used doesn't prove that.

sometimes takes awhile before your card is printed and used at another location..

This happened to me at the Shell Station on 466 a couple of years ago. All of these places that accept credit/debit cards send their transactions to clearing houses such as this Company. In my case, I couldn't find out who the Shell station was using so at least you know here. My CU called me and asked if I had been in Bangkok in the last week. And, ON THE SAME DAY, the number was being used at ATMs in THE PHILLIPINES. The CU stopped the transactions, refunded the money that had been withdrawn and did their investigation. My new card arrived a day or two later. Now, I never use a debit card at a gas station. I only use one credit card for routine transactions. I got Lifelock. It's ugly out there.

I have learned how to beat this. I purchase the gas gift cards and use them. Publix puts them on sale occasionally ($50.00 card for $10.00 off with every $50 spent for groceries), but I buy them on sale or not. If someone puts a skimmer on the pump, they may get a couple of dollars at most, and my credit/debit card remains safe.