Got my email from sticky password today advising the change master password and turn on two factor authorisation after suspicious activity noticed on their servers. Thankfully I don't use their cloud service and only keep it local. Heads up for any other Sticky Password users