In case you didn't get the letter. Sometime between Jan 15 and May 8 OOIDA's site was hacked and credit card numbers might have been taken.
But the good news is that "When we discovered the breach we immediately informed our internet service provider and took the necessary steps to prevent this from happening in the future". Why didn't they take the necessary steps before this happened? Encrypting the data is a little too much like work?
I love how corps tell us again and again how much they care and yet actions speak so much louder than words.