Midnight Blizzard suspected as the attackers
Data included from social media and other sources
Tracked breach to APIs, but says customer data remains safe
But the ICO cannot say if it is a widespread problem
Who is responsible, and what does it mean for defence procurement?
User IDs, passwords and payment dates are all in the stolen database