Tuition website TrueFire suffered a data breach incident after an “unauthorised person” accessed the company’s computer system and specifically unencrypted information that was entered into its website, for a period of over five months.
The ‘unauthorised user’ had potentially been able to harvest sensitive customer information as it was being entered into the site.
The breach exposed information including name, address, payment card account number, card expiration date and security code.
TrueFire recommended the affected users review payment card statements for suspicious activity, as well as follow standard preventative measures against identity theft.
Source: https://guitar.com/news/industry-news/truefire-data-breach/
"id": "TRU115641222",
"linkid": "truefire",
"type": "Breach",
"date": "03/2020",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"