On Fri, Nov 13, 2015 at 1:23 AM, Lodewijk lodewijk@effeietsanders.org wrote:
Were only the admin passwords compromised, or also the passwords of the list members (who can set a password to view the membership etc)?
Lodewijk
All passwords were reset, including list member passwords. Because list member passwords can go through a "retrieve password" + they get periodic reminders automatically mass emails about those resets were not sent out however. (I believe we may be adding a note in the auto reminder about how they were reset... but not entirely sure, I will leave that for ops)
James Alexander Manager Trust & Safety Wikimedia Foundation (415) 839-6885 x6716 @jamesofur