"Although our internal investigation is ongoing, we believe that in late March, a third-party criminal actor used hacking technologies to access our databases and may have accessed personal information, such as name, mailing address, email address, phone number, and credit card numbers and expiration dates that belong to our members' consumer-patrons," the company said in a statement on its Web site.
According to SC Magazine, tens of thousands of consumers may have been impacted by the breach, though Vendini reports that no credit card security codes, user names or passwords were accessed.
Following the incident, the company says it hired outside computer forensic and cyber security experts, implemented additional security measures, and notified its merchant banks.
Vendini is asking all consumers whose information may have been accessed to review their credit card statements and to monitor their credit reports for unauthorized activity. Consumers with questions are advised to call (800) 836-0473.