Hello all
Adding this thread for those who wind up looking in CTH for information about the latest hack of the 2+2 forums.
Some information:
1. By now you'll probably have seen the message asking you to change your password. This is genuine: make sure you change your password asap (plus anywhere else you've used the same credentials - which no-one in their right mind should do but some will).
2. There are threads elsewhere that will be updated more frequently than this one, although I suggest that this one can be used for general technical questions. If you have technical questions to ask the site's owners/staff, though, you should ask them in the ATF threads.
ATF:
Main thread
Another thread on the topic
NVG:
NVG thread
3. For the avoidance of doubt this is a new compromise, and it appears to have taken place on or before 7 December 2016. It is separate (although presumably may share commonalities with) the widely publicised hack that took place in 2012.
4. In this attack the stolen database is reported to contain your username, (apparently hashed) password, email address, IP address associated with your account, date of birth (if you gave it when you registered), and possibly the password salt too. (This is what is suggested by leakedsource.com - note that I have no idea whether that site is legitimate or whether it is safe to pay for its services.)
5. Note that some of these details might be used to compromise other accounts of yours elsewhere, even if you used a different password (for instance details such as email address and date of birth might be useful in password reset mechanisms on some sites; and IP addresses could conceivably - but less likely - be used to target people as well).