The thing is though, staff should know they are at risk for these kinds of attacks at all times. I mean come on. You'd think with all the donations they get, they'd get better self defense programs or whatever.GUYS. It's not a case of "FA having bad security." Have you heard anything that's been said? The security exploit was in the service FA *uses* for its database delivery. The security breach was not on FA's end. They had patched the exploit way back on the 5th. But data had been compromised before that, and since FA wasn't even aware of the exploit, they had no way of knowing said data was compromised. Instead of directing the selective outrage of the furry machine at FA, why not be outraged at the jerk who actually attacked the site? Even if FA's security could have been better, you don't prosecute the guy who had his house broken into, even if he left the door unlocked - you prosecute the actual thief.