This comes via Andrew McGlashan & the MLUG mailing list. I thought Andrew might have cross-posted over here but it appears he hasn't and as I feel it's important to the community I thought I'd go ahead and do so.

Those with a Ubuntu fourms account should see this announcement by Canonical about a security breach in which user names, email addresses and passwords stored as salted hashes were accessed.

http://ubuntuforums.org/announce.html

This is especially important for those people who may have reused passwords on other sites including (but obviously not limited to) Canonical's Launchpad and UbuntuOne.

Cheers
Tim Hamilton

--
Vote NO in referenda.