Oregonians Federal Credit Union

debit_card_rewards.JPG AP Photo/Elaine ThompsonMichaels Stores says PIN pads at close to 90 stores were tampered with.

Oregonians Federal Credit Union says a "data breach" that threatened members’ debit card accounts stemmed from theft of card information at Michaels Stores Inc., and not at the credit union itself.

The credit union sent some members a letter last week warning of the threat, and telling them that their debit cards would be replaced. The letter did not say what data was at risk. The credit union’s top executives were out of the office late Friday, and staff at the office declined to discuss the letter.

On Sunday night, credit union chief executive Chuck Garner wrote to describe the problem in more detail.

“The letter sent to members failed to state that the data breach was related to the Michaels breach that has been widely reported by the Oregonian and most news outlets locally, ” Garner wrote in an e-mail.

Michaels reported last month that Personal Identification Numbers pads at close to 90 stores had been tampered with between Feb. 8 and May 6, exposing payment cards to possible fraud. The tampering occurred at two stores in Beaverton as well as stores in Tualatin, Roseburg, Springfield and Medford, that company said.

"OFCU experienced a very small number of cards that were affected and the amount of dollars involved was very small, " Garner wrote in a subsequent e-mail this morning. He said that the credit union will issue a new debit card to every account that had any activity at Michaels during the time in question -- 450 out of 25, 000 accounts.

"We feel that this proactive approach is best so that members will not worry just in case they happened to shop at the retailer sometime in the past few months, " he wrote. "Issuing the extra cards is at substantial cost."

Milwaukie man gets 4 years in prison for ID theft, credit union break-in

Related posts: