We've emailed users today with the following message titled "Important: GreenNet security breach"
Dear GreenNet friends,
We are writing to let you know that we have detected a security breach on a GreenNet administrative server. At present we don't believe that there has been any loss of or access to personal data and we are continuing to investigate.
However, to be on the safe side, if your password is an automatically-generated one that we issued to you, we ask that you reset it to something of your own choosing.
To change your password, please go to our website, and select "Webmail" at the top right corner, choose "Squirrelmail", go to "Options" at the top then "Change Password", fourth down on the right hand side. You will need to include at least one number in your new password. After that you will be logged out of Squirrelmail and if you want to use Squirrelmail again, may need to close your browser, reopen it, retype your new password and then log in. You will of course need to update the password on your desktop and mobile devices - if you aren't prompted for the new password, please see our support pages or your email program's documentation.
If you use your GreenNet password on any other service, we would also recommend you change the password on that service to something distinct.
We may also need to reset some FTP passwords (for uploading to websites). We will contact you individually in the near future if this applies.
We apologise for the inconvenience and any distress caused. We will continue to keep you informed of developments, including on https://www.gn.apc.org/support, email and Twitter (@GreenNetISP), as we investigate and ensure that our systems are all as secure as possible.