AUGUSTA, Maine (NEWS CENTER) -- Some people who bought passes to Maine State Parks online last year may have had their credit card information exposed.
The company that handles online state park pass purchases had a malware attack that may have exposed cards used in transactions from March 21st to December 22nd of last year.
The vendor is based in California. No state systems have been compromised.
So far there's been no evidence of fraudulent charges on the exposed cards. The Department of Conservation has sent out notices to 970 credit card holders in Maine.
"In essence though we were also the victim of it and it was up to the vendor to notify all the card holders who might have used the site. Since then the site has been taken down and we're working with another vendor to create a better safer site", said Jeanne Curran, spokesperson for the department.
While the online system is being rebuilt people can buy passes over the phone, at parks or on their income tax forms.