Yeah, this one's been a bit of a giggle for those of us in the infosec field. The nature of the issue is very similar to that 'Heartbleed' TLS issue from a couple years ago.

I'm going to have to redo a couple creds - digital ocean's front end was affected - but it looks like I got out of this fairly light.

Friend of mine noted that events like this are a great way for you to audit what stale accounts you might have laying around that you didn't realize were still active.