You guys have heard the phrase, shutting the barn door after the horse has bolted? Well, in the case of an security announcement that Cryptic Studios sent out to subscribers this morning, the horse has not so much bolted, but rather...
It's dead already.
Cryptic's email, which multiple folks in the office received, came in about 9am this morning, and states "As a result of routine security checks and upgrades, we have discovered that certain of your account information, including your password, may have been accessed by an unauthorized party. For your security, we've reset the password on your account. You can recover your password via the "forgot password" link on the official Star Trek Online or Champions Online web sites."
However, when follow the link to 'full details' on the breach, you discover that "The unauthorized access occurred in December 2010, and evidence of this has just been uncovered due to increased security analysis."
So, yes, you might want to change any other accounts, gaming or whatever, that shares the passwords used for the two affected Cryptic Games, but, you might also want to look back aways to see if anything untoward has happened.
Cryptic has not found any evidence that anything beyond log-in details have been compromised; no financial data has been breached, to its knowledge. For the full details, click here.