That's the part that makes me wonder. The email that I received said, "We have found no evidence that any Linode data of any other customer was accessed."

I suspect that they aren't 100% sure, and that this is a precaution. I can live with it, but I hope that they keep their customers in the loop on things, where possible.

Can you ever be 100% sure of such a thing?

Probably not. I do think that an effort can be made to follow the trail (logs, etc), and come to the best guess possible. I'm not saying they haven't done this, though.

> We have been advised that law enforcement officials are aware of the intrusion into this customer’s systems.

I feel like this is probably more than just some dude's account.

I think this as well. Why did Linode describe themselves as being the ones advised, rather than Linode being the one to inform law enforcement of the breach?

Right? I don't see how this helps.

It could be that they are restricted from providing more details due to the nature of the issue? It sounds like a cop-out and is, but if for instance it was under active investigation, and it was something big, they might be able to reset customer passwords while not identifying information to the attacker.

On the other hand, this type of action would give it away either way, so maybe even that excuse doesnt smell right.