thanks for this info , unfortunately I use the former password on a lot of sites. I hope the attacker does not sell this information to other attackers
After today I highly suggest stopping using that password. I don't think we know if they have entire database. But it is looking bad after today in meta.
Best is just to stop using it/change everywhere and if they sell it or try to use it you have rendered it useless.