This apology (if you can call it that) annoyed me so much. At no point in this entire e-mail did they own up to their negligence and security failure, nor have they reassured us about steps being taken to make sure this doesn't happen again. Thoroughly disappointed.
I doubt it, the public blog post has less details on what breached compared to the private emails they sent out.
I'm not so mad about the password being stolen, but the combination of my e-mail address and my DOB which can be used for a lot of things (sites with bad password recovery). I suppose it's time I start a system where I provide fake DOB.
