Mandatory password resets
A Vanilla software update around 1 November introduced a security vulnerability that may have affected a small number of user accounts. It only could have affected members who were quoted during the first two weeks of this month, and even so, the exploit was rather arcane and unlikely. Nevertheless, as a precaution all members are being required to reset their passwords. In the worst case, your username, email, encrypted password, IP address, user preferences, and forum rank could have been exposed. Dgrin has no financial data whatsoever, and is completely separate from SmugMug accounts.
We apologize for the inconvenience. If you need additional information, you can contact me by PM.