juju2cat
Well-known member
Dear Contest Entrant:
We are contacting you because we have learned of a data security incident that involved some of your personal data.
Mike-sells uses the services of a professional marketing firm as well as web design and hosting firms to maintain and operate its external website. We are informed that on in late October and early November the marketing firm ran several reports to analyze the use of the site and promotions conducted through it. The reports generated data base files containing information on persons who had interacted with the site. While Mike-sells was aware that the firm ran reports of this type, at no time did we authorize any of these parties to disclose any of this information to anyone other than Mike-Sells or to make it publically available. Unfortunately, and inadvertently, the manner in which these reports were run or processed resulted in database files containing personal information to eventually become publically available via the Internet. We were not aware of this accessibility when it occurred and certainly would not have approved of it. Based on our initial investigation, the files first became publically available on about the first week of November.
We were first informed of this circumstance on November 8th. We immediately instructed our marketing and web design firms to make sure that (1) the files were removed from public access; (2) that any vulnerability in the web systems that could allow such access be immediately remedied; and (3) that all possible steps be taken to ensure that the files were removed from search engine caches or otherwise were made unavailable for public access The two providers have informed us that each of these steps has been accomplished, and we are continuing to work to confirm this. Based on the information currently available to us, it appears that the information was only publically available from early November through November 10th.
The information released contained your first and last name, street address, email address and IP address. Other information, such as your credit card information, PIN or security codes was not released.
We are notifying you so you can take action along with our efforts to minimize or eliminate potential harm. We have advised the three major U.S. credit reporting agencies about this incident and have given those agencies a general report, alerting them to the fact that the incident occurred. However, we have not notified them about the presence of your specific information in the data breach. We strongly encourage you to take preventative measures now to help prevent and detect any misuse of your information.
We recommend that you consider placing a fraud alert on your credit file. A fraud alert tells creditors to contact you before they open any new accounts or change your existing accounts. Call any one of the three major credit bureaus. As soon as one credit bureau confirms your fraud alert, the others are notified to place fraud alerts. All three credit reports will be sent to you, free of charge, for your review. We recommend you closely monitor your financial accounts and, if you see any unauthorized activity, promptly contact your financial institution.
Equifax
(www.equifax.com)
P.O. Box 740241
Atlanta, GA 30374-0241
1-800-685-1111
Experian
(www.experian.com)
P.O. Box 2104
Allen, TX 75013-0949
1-888-EXPERIAN (397-3742)
Trans Union
(www.transunion.com)
P.O. Box 1000
Chester, PA 19022
1-800-916-8800
Even if you do not find any suspicious activity on your initial credit reports, the Federal Trade Commission recommends that you check your credit reports periodically. A victims personal information is sometimes held for use or shared among a group of thieves at different times. Checking your credit reports periodically can help you spot problems and address them quickly.
If you find suspicious activity on your credit reports or have reason to believe your information is being misused, you should contact law enforcement, including the Federal Trade Commission, and file a police report. Get a copy of the repot; many creditors want the information it contains to absolve you of the fraudulent debts. You also should file a complaint with the FTC. Additionally, the FTC and some state attorneys general offer consumer assistance and educational materials relating to steps individuals can take to avoid identity theft and privacy issues. They may be contacted at:
Federal Trade Commission
Consumer Response Center
600 Pennsylvania Avenue, NW
Washington, DC 20580
(877) 438-4338
www.ftc.gov/idtheft
Maryland only:
Office of the Attorney General
Consumer Protection Division
200 St. Paul Place
Baltimore, MD 21202
(888) 743-0023
www.oag.state.md.us
If you have any questions about this notification or require further assistance please contact Customer Service at 1-800-858-9437 extension 157.
Sincerely,
Mike-sells
P. O. Box 115
Dayton, OH 45404
We are contacting you because we have learned of a data security incident that involved some of your personal data.
Mike-sells uses the services of a professional marketing firm as well as web design and hosting firms to maintain and operate its external website. We are informed that on in late October and early November the marketing firm ran several reports to analyze the use of the site and promotions conducted through it. The reports generated data base files containing information on persons who had interacted with the site. While Mike-sells was aware that the firm ran reports of this type, at no time did we authorize any of these parties to disclose any of this information to anyone other than Mike-Sells or to make it publically available. Unfortunately, and inadvertently, the manner in which these reports were run or processed resulted in database files containing personal information to eventually become publically available via the Internet. We were not aware of this accessibility when it occurred and certainly would not have approved of it. Based on our initial investigation, the files first became publically available on about the first week of November.
We were first informed of this circumstance on November 8th. We immediately instructed our marketing and web design firms to make sure that (1) the files were removed from public access; (2) that any vulnerability in the web systems that could allow such access be immediately remedied; and (3) that all possible steps be taken to ensure that the files were removed from search engine caches or otherwise were made unavailable for public access The two providers have informed us that each of these steps has been accomplished, and we are continuing to work to confirm this. Based on the information currently available to us, it appears that the information was only publically available from early November through November 10th.
The information released contained your first and last name, street address, email address and IP address. Other information, such as your credit card information, PIN or security codes was not released.
We are notifying you so you can take action along with our efforts to minimize or eliminate potential harm. We have advised the three major U.S. credit reporting agencies about this incident and have given those agencies a general report, alerting them to the fact that the incident occurred. However, we have not notified them about the presence of your specific information in the data breach. We strongly encourage you to take preventative measures now to help prevent and detect any misuse of your information.
We recommend that you consider placing a fraud alert on your credit file. A fraud alert tells creditors to contact you before they open any new accounts or change your existing accounts. Call any one of the three major credit bureaus. As soon as one credit bureau confirms your fraud alert, the others are notified to place fraud alerts. All three credit reports will be sent to you, free of charge, for your review. We recommend you closely monitor your financial accounts and, if you see any unauthorized activity, promptly contact your financial institution.
Equifax
(www.equifax.com)
P.O. Box 740241
Atlanta, GA 30374-0241
1-800-685-1111
Experian
(www.experian.com)
P.O. Box 2104
Allen, TX 75013-0949
1-888-EXPERIAN (397-3742)
Trans Union
(www.transunion.com)
P.O. Box 1000
Chester, PA 19022
1-800-916-8800
Even if you do not find any suspicious activity on your initial credit reports, the Federal Trade Commission recommends that you check your credit reports periodically. A victims personal information is sometimes held for use or shared among a group of thieves at different times. Checking your credit reports periodically can help you spot problems and address them quickly.
If you find suspicious activity on your credit reports or have reason to believe your information is being misused, you should contact law enforcement, including the Federal Trade Commission, and file a police report. Get a copy of the repot; many creditors want the information it contains to absolve you of the fraudulent debts. You also should file a complaint with the FTC. Additionally, the FTC and some state attorneys general offer consumer assistance and educational materials relating to steps individuals can take to avoid identity theft and privacy issues. They may be contacted at:
Federal Trade Commission
Consumer Response Center
600 Pennsylvania Avenue, NW
Washington, DC 20580
(877) 438-4338
www.ftc.gov/idtheft
Maryland only:
Office of the Attorney General
Consumer Protection Division
200 St. Paul Place
Baltimore, MD 21202
(888) 743-0023
www.oag.state.md.us
If you have any questions about this notification or require further assistance please contact Customer Service at 1-800-858-9437 extension 157.
Sincerely,
Mike-sells
P. O. Box 115
Dayton, OH 45404
