So this was posted up recently on Roll20.net as they have been listed as one of the sites that got listed with a data-breach. <—Direct link of post.
If you use Roll20, I suggest you log in and update your information, change your password.
From the looks of things, your payment information should be safe as they use Paypal and Stripe for transactions which they assure never hit the servers.
As a secondary precaution, I’d log into the services connected and changed those passwords as well. Call me a bit paranoid, but in these types of situations its best to follow through with changing passwords on the site in question along with any sites that are connected to the main site.
Stay safe.
– Evil out!