"I'd be worried about the potential for kids to abuse the data. There's a lot of young people in there and finding, say, young females and being able to contact them by phone is a worry."It appears the data breach occurred back in August 2016. At that time, unknown attackers found the database, stole its contents, and began circulating them on underground web forums. Someone must have found the records and sent them to Hunt. Hunt, who has independently verified the leaked data, has added the Wishbone information to his data breach notification service "Have I Been Pwned?". He's also sent out notifications about the incident to his subscribers. In the meantime, Wishbone has sent out a notification letter to affected users informing them that the incident may have compromised their email addresses, telephone numbers, user names, and personal names:
"We value your privacy and deeply regret that this incident occurred. Maintaining the integrity of your personal information is extremely important to us. We sincerely apologize for any inconvenience this incident may have caused you. We are continuing to investigate this matter and have taken and will continue to take appropriate action to prevent future similar incidents. Please be assured that we will keep you informed of any developments in the investigation that may be of importance to you."The social media app says the data breach didn't compromise any passwords but that users should consider changing their combinations as a precaution. For advice on how to create a strong password, please click here.