21 Jun 10, 01:51AM
At the request of others, here are a few more facts, but this is the last we may comment on the incident:
- Yes, email addresses may have been leaked.
- Yes, forum login passwords may have been leaked. We recommend you change your passwords used on the site, just in case, however, please note: they were encrypted, so it shouldn't matter too much.
- No, malware wasn't distributed.
- Yes, security systems in place now are far better than before.
- Yes, the initial security issue that caused the trouble (as mentioned before above, it was a PHP exploit, executed on an insecurely written page on the main site - not the forum), has not only been removed, but also had several changes put in place to minimise or stop the damage, should such incidents occur in the future (which they won't).