A GDS spokeswoman claimed that other government websites had not been affected in the breach, which exposed usernames, email addresses and hashed passwords.
One errant character in a coding string caused a buffer overrun which, in turn, led to a memory leak that dumped personal data in plaintext from a variety of Cloudflare's customers' sites.