The hacked database contains information on users of the forum, including login username, actual name, e-mail address, hashed passwords, last IP used to access the forums, and some social media usernames in very limited situations.
These are user data from their own forum, right? So if if one never used their forum, it should be okay?
Although, now one has to wonder if they still fulfill the web of trust principle. I have a few domains with the free Let's Encrypt certificates. Yeah, I know, I'm cheap, and it came back to possibly bite me. I'll have to check what DreamHost's word on this will be.