In that case, it seems they only got ahold of the password hashes for every account. The admin is working on upgrading to a better encryption method so if this happens again, it will be very time comsuming to crack em. Assuming the current ones were pretty good, we might not have anything to worry about.