Unlucky that this happened, being hacked is really painful and brings a lot of 'restoring' time with it as you need to reformat, re-import databases, files and in this case notify the customers.

As some have already pointed out (especially Mr Happy), the most essential point in situations like these (where client data gets leaked) is to inform them as soon as possible, this is something that wasn't done (lack of experience?). I'm pretty sure that all the people that have followed this thread will have learned a lot from this topic. Besides that I'm also sure (I hope so anyways) that if something like this happens again the owners will act faster than they did now.

I wish all the people who had their info leaked good luck and remember: always use a different password for each site you login to.

- Whoo