Potential data leak

I’ve just been warned by NordVPN of a potential data leak from this website. It may be a false positive as per the screenshot below but, just in case, I would recommend changing your password.

We have been actively investigating this report since it came in. However, we have found no evidence of a recent breach thus far. We will be continuing our investigation on this end, but we wanted to provide our initial analysis results as quickly as possible.

While we haven't completed a thorough analysis yet, this may be a false positive. Another possibility is this pertains to data that was potentially exposed over 15 years ago, after which we significantly tightened our security. For more details of the latter event, please see this post: https://forums.wolflair.com/showthread.php?t=8075

As a precaution, we encourage everyone to consider changing their password and ensure that it is different from any other password you use elsewhere. To simplify doing that, you might consider using a password manager that ensures you use unique passwords for all websites and services to which you subscribe.

We have contacted NordVPN support and they have declined to provide us with any further information about this alleged breach, citing contractual obligations to the third party service provider they rely on for their Dark Web Monitor feature. Our internal analysis has concluded and found no evidence of a data breach since the incident over 15 years ago (see above), so it is most likely either a false positive or this ancient event being reported by NordVPN. However, out of an abundance of caution, our recommendation to change your password remains the same.

Yes, I've seen that reaction from other supposed "security vendors", where they refuse to elucidate exactly what the problem is.

Reasoning with them doesn't seem to help: "But you must understand that if you can't justify your rating, people will simply ignore them! And what's the point of a 'security product' if people ignore your warnings??"

Sigh.