"The company has advised customers to change their passwords, generate new API keys for their services, and create new OAuth tokens -- used for logging into accounts -- as well as to create new security certificates.
One report pointed to a corporate customer affected by the breach having to "rebuild the whole authentication security system.""