Announcement on Lord of the Rings Online Forum:
Turbine recommend that all players change their passwords by visiting https://myaccount.turbine.com. Please remember to use unique, hard-to guess passwords that are not associated with other online services or sites.
The FAQ on the incident, undated, says that, “Recently, we became aware of a compromise of the LOTRO forum database.” Payment information or credit card details were not involved in the breach which they describe as being due to a “bug in our forum code” that allowed unauthorized access to the forum database.
BlueHornet notified users by e-mail to either change their passwords or that their passwords had already been changed.