Well now we have three password leaks right off the bat – an entire list of all registered HPPS user’s passwords have posted. What’s startling about this is that there is no encryption on the HPPS accounts. This was most likely not intentional – because HPPS was likely using an early version of the iCPPS source – which did not include encryption.
An estimated 14,000-16,000 accounts were leaked, so if you registered for HPPS, you’re password is in this list, unencrypted.
PHPDevs have claimed responsibility for the breach of data, however they have decided to only release the username and passwords of the accounts – and not the email. They decided to do this to avoid any personal information being stolen or Paypal accounts hijacked.
HPPS is currently corrupted beyond repair from what I am hearing – so don’t expect it to come back any time soon.