Update from this morning:
We've been through every system now and are confident nothing was stolen. It was only a front-page replacement to protest.
However, as a rule of thumb for these situations we are still encouraging our members change their passwords. We also encourage good password technique:
1) more characters are better
2) don't use real words or names
3) don't put a 2/3/4 number date or year at the end.
This will not replace the other discussion thread, it's only to alert people to update their profile. 🙂 Thanks!