LL needs to come clean now!

The response to this database exploit has been unacceptable so far. Since encrypted payment information has potentially been grabbed, we need to know NOW exactly what information was potentially taken and how effectively it was secured.

I am not at all pleased about anyone gaining access to my RL information, but I can live with it. It's not a state secret. Payment information, however, is an unacceptable risk to take.

I want to know, via private email if necessary, what pieces of information from my account were potentially involved and how those data elements were, or were not, protected and to what degree - strength of encryption, key lengths, encryption type etc.

Furthermore, if you believe the security questions were potentially compromised, why are they being used to do password resets. What is to prevent the attacker from using those answers to hack our accounts even after we have reset the passwords.

I will not be considering an answer of "Wait until Monday, it's the weekend" to be acceptable. This is my real-life finances you are dealing with here and I expect it to be treated with urgency. If this means weekend hours for the support staff, then so be it. If I have not received a reply from support with answers to these questions by the end of the business day on Saturday, I will be contacting your local law enforcement to file a report regarding the attack and potential compromise of my information.

I am copying this same message to the support email address. I strongly suggest you have staff on duty over the weekend to handle these kinds of requests - I'm sure you'll be receiving plenty of them.

We've tried to answer everyone's questions in the FAQ that was sent out to all SL Residents this evening. I've posted it here.