What does a web site owner have to do when they are hacked and user data is compromised? In many instances, the web site owner has to disclose the hack and data breach to its users.
Whatever the suspect's motivation for hacking Palin's e-mail, it's pretty obvious why O'Reilly became a target. He had spent days railing against the earlier Palin hacks, and in particular, the image-hosting site 4chan for posting the information. O'Reilly wanted 4chan and its owner held criminally responsible for the contents being posted on the boards.
Someone out there evidently took umbrage at these statements and decided to hack into O'Reilly's personal Web site. Over the weekend, screen grabs of recent subscribers, with their names, e-mail addresses, cities of residence and most importantly their passwords were posted to Wikileaks.org. In passing on the screens, the hackers told Wikileaks that security for BillOreilly.com was "non-existent."..such a leak still requires O'Reilly and his hosting provider, Nox Solutions, to inform all subscribers their information has been compromised. Section 1798.82 of the California civil code says security breaches must be disclosed to data owners and that state residents must be notified in the event of a breach.