Vacationland Vendors discovered that a hacker had gained unauthorized access to its card processing system at Wilderness Resorts in Wisconsin and Tennessee and had access to credit and debit cards processed by its arcade point of sale system from Dec. 12, 2008, to May 25, 2011.
“Based upon its investigation to date, Vacationland Vendors reasonably believes that a computer hacker improperly acquired credit card and debit information. This incident did not involve an internal security issue within the Wilderness Resort. Vacationland Vendors has learned that other businesses just like its own have been affected by this computer hacker.”, the company said on its website.
The company said it is working with an outside consultant to ensure its card processing systems are secure and protected from further hacking, but it did not indicate whether it was providing affected customers with credit monitoring services.
The website announcement did not provide the number of people affected by the data breach, but news reports put the number at up to 40,000.