Whoever got access to Chudbuds seems to have had root access to their database - I'm going to guess that Claire didn't have SSH keys set up or she had password login enabled with a weak password or something. I do not know the nature of the breach.