Kinda hard to be Jason Bourne when they already know who you are.  As bad is this seems after reading this, I wonder how hard it would be to really ‘fix’ for a determined attacker as they say.  It would have to be pretty specific and I am sure there would be some sort of audit trail to clean up and maybe a few copies of the entry.

I would love to be in that room as this problem is worked out, I am pretty sure they did not go with the ‘we give up’ solution.