First and foremost we want to let you know that all BNR systems were updated within houts of the disclosure and the issue is therefore resolved on all BNR sites.
To our knowledge, there were no attacks to any BNR sites, servers, or our stored data. However, due to the nature of the vulnerability this cannot be completely ruled out, though.
As a precaution we recommend that you reset your password. Do not hesitate to contact our support team in case you have any questions.