I don't think users have a lot to worry if they have a reasonably complex password. AFAIK, beth's forums store passwords encrypted in MD5 in the databse. Now MD5 isns't that great anymore these days, but unless you have a weak or mediocre password, the risk of decryption isns't THAT high. Well, they can try bruteforcing it, but that wold be a waste of time and resources. I wouldn't know for the website, but I think it's fairly safe to assume that Beth isn't storing their passwords in plain-text...