I don't understand the Steam database part...does that mean if you have a Steam account you should change your password, or does it mean that if you are a forum member and have a Steam account then you should change it because the forums were hacked. I have an account but not on the forums...hope no one steals my free copy of Portal 2.
BTW, don't they realize that the proper thing to do is to wait a month before saying anything, take the service offline for a couple months, accept no responsibility, make everyone download a new system update and change their passwords, include a rootkit in that update that logs every single thing you do, lists everything on any removable storage device and sends the info back to themselves, create a new division specifically for the network, hire someone from the US government to take "control" of said network, then make everyone download yet another system update with a clause that makes the customers ineligible to take part in any class action lawsuits hidden in the gigantic EULA? I don't get this whole "apology" thing. They've obviously learned nothing from SONY's example of customer service.