On the plus side, their database has still not been hacked .. like it has happened one month ago in France, with the "ANTS" (the French equivalent). More than 10 millions people had their data leaked including pretty much everything from SSN, to email, phone, etc. A mine gold for Phishers and Scammers.
Why would they leak the data of only 10M people and not all? Just to cause damage or were some people filtered out?