If we are careful in researching this situation we see that the sentence about no financial data, etc. applies to everything outside of that forum platform. And that .2 percent is just a PR ploy -- a smokescreen. And the company media specialists know that.
In addition, as of when that blog post went up and that individual also released a letter to a security expert on the Net the company still did not know how the hack was done.
As such, a question as to whether the PMs were compromised is quite legitimate. In fact, it is a question that should be of concern to every community member here. And the repeated attempts to state things like it was too long ago to be a bother now is hogwash.
Why is it hogwash? Because if the PMs were compromised and the company did not inform the community members as soon as they knew, that speaks of extreme disrespect!
Now, one business day has certainly passed in the city where this company has its headquarters and still no answer here.
If somebody at that company thinks I am just going to fade away, you best think again. And if you think banning me for asking this question will do the trick, think again.
What's going to happen if I don't get an answer within about one or two more business days there, is, ONE: I am going to first go to the embassy of the Czech Republic and file a complaint and then, TWO: I am going to send a letter to whatever law enforcement agency at the national level in that country handles such matters and explain that I tried to use this support forum to get answers and nothing happened. I am also going to see what EU regulations might apply and see whether a complaint to the appropraie EU regulatory agency may be useful.
I will get the answers, no matter how long it takes. If I have to spend money to get answers through an attorney's office in the Czech Republic, so be it. Whatever it takes, I'm going to do it. And I have good reason for being stubborn about this. This speaks to a bigger issue. An issue that is much bigger than any one company.