As we already know WHMCS's database has been compromised. Official email from WHMCS Interesting situation, let's see the facts. What we know for sure 1. Our server was compromised by a malicious user that proceeded to delete all files 2. We have lost new orders placed within the previous 17 hours 3. We have lost any tickets or replies submitted within the previous 17 hours What may be at risk 1. The database appears to have been accessed 2. WHMCS.com client area passwords are stored in a hash format (as with all WHMCS installations by default) and so are safe 3. Credit card information although encrypted in the database may be at risk 4. Any support ticket content may be at risk - so if you've recently submitted any login details in tickets to us, and have not yet changed them again following resolution of the ticket, we recommend changing them now. What do you think guys?