In a letter to users, TrueFire wrote, “While we do not store credit card information on our website, it appears that the unauthorized person gained access to the website and could have accessed the data of consumers who made payment card purchases while that data was being entered, between August 3, 2019 and January 14, 2020.”
Potentially affected user information, TrueFire wrote, includes names, addresses and credit card details.