You are not wrong Chris, our website was comprimised, but all password data within it that could have leaked was encrypted.
The primary account and billing database is hosted on a separate server was not comprimised, and even if it was all the data is encrypted with the exception of dates
We have since learnt from our mistakes and are now using extremly long and complex passwords
with admins needing thier own username and passwords and a 2nd admin username and password.
This issue was raised as an announcement on our discord server and everyone was made aware of it,
so not quite sure why you also posted it here.
Regarding HTTPS our site does make use of that so not sure why you raised that point.
For anyone still concerned over the data see
here and it will list all the places your email has had information leaked on in the past.