[ATTACH=CONFIG]12967[/ATTACH]
Unity confirmed today that their forums were hacked over this past weekend. Unity director of security Andreas Haugsnes issued a statement about the security breach.
On April 30, our public forum website was attacked and successfully compromised due to poorly implemented password routines; our investigations show no theft of passwords in this attack, nor impact to any other Unity service.

However, the attack did result in defacement of the site (which has since been fixed) and subsequent messaging to all of our registered forum users.

We’re actively working to improve the authentication options in our services, and to help protect your data we’ll be rolling out the following in the next few weeks:

2FA Authentication
2FA will enable you to use one time passwords tied to the Unity Authentication platform. This will also be enforced in forums.

Device Identification
Device Identification will alert and/or prompt you if a new PC or Mobile device tries to connect to a Unity service, with your credentials.

Password Policy
Enable a per organization password reset, rotation and strength policy.

We’re sorry. We know you put your trust in us. We will learn from our mistakes.

The hack originally came to light when Unity users said that they were receiving emails from Unity's account in which a group called OurMine claimed that they hacked the site and had access to a database of two million users. OurMine were at least kind enough to also inform people that they should probably change their passwords.