Does anyone know what the actual vulnerability was?
The most I've heard was: "The company says that hackers accessed data between mid-May and July through a vulnerability in a web application."
That came from Wired. I'm looking for more details.
-K