Skip to main content
Switch to text-only version
Get accessibility information and assistance

Security Notification: Vendini Credit Card

On May 21, 2013, Western Oregon University (“WOU”) was informed that Vendini, Inc. (“Vendini”) experienced a data security breach to its computer systems.  Vendini  is a third party business associate the university uses to manage and process tickets sales for its Athletic events.  Vendini believes that a computer hacker may have accessed personal information of WOU patrons who attended these events, such as name, mailing address, email address, phone number, and credit card numbers and expiration dates.  As a result, personal information of affected WOU patrons may have been potentially exposed to others.  Vendini does not collect credit card security access codes (e.g., CVV, CVV2, PINs), social security numbers, usernames or passwords. 


According to Vendini, the unauthorized intrusion into its systems occurred in late March.  It discovered the intrusion on or about April 25, 2013.  Vendini says it delayed reporting the event to its customers, including WOU, for several weeks to support law enforcement’s investigation of the intrusion.


In light of Vendini’s data breach, please note the following:

  • To protect against the possibility of identity theft or fraud, we urge you to remain vigilant and to regularly review your credit card account statements and credit reports for any unauthorized activity.
  • If you suspect that you may be a victim of identity theft or fraud, immediately contact your local law enforcement agency, your State Attorney General’s office, and the Federal Trade Commission.  We have enclosed a Resources Guide for your reference.
  • Do NOT respond to any requests for sensitive personal information in relation to this incident. 


WOU takes this incident seriously and is committed to providing the best services to its community patrons.  In support of this service, we are offering a no-cost one-year membership of Experian’s ProtectMyID Alert to patrons affected by Vendini’s breach.  This product helps detect possible misuse of personal information and provides superior identity protection services focused on immediate identification and resolution of identity theft.  If you think you are a patron affected by this incident and you are interested in enrolling for the ProtectMyID Alert service, please contact us through the Oregon University System at (503) 798-9976.


For more information regarding this incident, please contact us through the Oregon University System at (503) 798-9976, contact Vendini toll-free at 1-800-836-0473, or visit Vendini’s website at


Resources Guide

U.S. Federal Trade Commission (FTC):  The FTC has helpful information about how to avoid identity theft and other steps that consumers can take to protect themselves.
Write to:  Consumer Response Center, 600 Pennsylvania Ave., NW, H-130, Washington, D.C. 20580
    Call Toll-Free: 1-877-IDTHEFT (438-4338); or Visit:  


Oregon’s Office of the Attorney General:  1162 Court St NE, Salem, OR 97301; Tel: (503) 378-4400 or


Free Annual Credit Report:  You may obtain a free copy of your credit report once every 12 months (or purchase additional copies of your credit report).  Call Toll-Free:  1-877-322-8228; or Visit:; or Contact any one or more of the national consumer reporting agencies:

Equifax:      P.O. Box 740241, Atlanta, GA 30374-0241    (800) 685-1111
Experian:    P.O. Box 2002, Allen, TX 75013    (888) 397-3742
TransUnion:    P. O. Box 1000, Chester, PA 19022    (800) 888-4213



“Fraud Alerts” and “Security Freezes”

Fraud Alert - You have the right to place a fraud alert in your file to alert potential creditors that you may be a victim of identity theft.  Creditors must then follow certain procedures to protect you; therefore, a fraud alert may delay your ability to obtain credit.  An “initial fraud alert” stays in your file for at least 90 days.  An “extended fraud alert” stays in your file for 7 years, and will require an identity theft report (usually, a filed police report).  You may place a fraud alert by calling any one of the three national consumer reporting agencies:

Equifax: 1-800-525-6285       Experian: 1-888-397-3742     TransUnion: 1-800-680-7289


Security Freeze – Some U.S. states provide the right to place a security freeze on your credit file, which prevents credit, loans and services from being approved in your name without your consent.  Using a freeze may interfere with or delay your ability to obtain credit. To place a freeze, send a request by mail to each consumer reporting agency (addresses below) with the following (if you are requesting a credit report for your spouse, this information must be provided for him/her as well): (1) Full name, with middle initial and any suffixes; (2) Social Security Number; (3) Date of Birth; (4) Current address and any previous addresses for the past two years; and (5) Any applicable incident report or complaint with a law enforcement agency or the Registry of Motor Vehicles.  You must also include a copy of a government-issued identification card and a copy of a recent utility bill or bank or insurance statement. Each copy must be legible, display your name and current mailing address, and the date of issue. The credit reporting agency may charge a fee up to $5.00 to place, lift, and/or remove a freeze, unless you are a victim of identity theft or the spouse of a victim of identity theft, and you have submitted a valid police report relating to the identity theft incident to the consumer reporting agency.

Equifax Security Freeze:  P.O. Box 105788, Atlanta, Georgia 30348
Experian Security Freeze:  P.O. Box 9554, Allen, TX 75013
TransUnion (Fraud Victim Assistance Division):  P.O. Box 6790, Fullerton, CA 92834-6790



University Computing Services 503-838-8154 | or e-mail: