It appears that the security incident of last august led to at least some customer data, both encrypted and unencrypted, being copied and stolen. Encrypted data may be at risk if customer master password is not strong enough or has been leaked separately