https://blog.linode.com/2016/01/05/security-notification-and-linode-manager-password-reset/ "A security investigation into the unauthorized login of three accounts has led us to the discovery of two
Linode.com user credentials on an external machine. This implies user credentials could have been read from our database, either offline or on, at some point. The user table contains usernames, email addresses, securely hashed passwords and encrypted two-factor seeds. The resetting of your password will invalidate the old credentials."