Well, I agree with you that this is bad - see my post above - corporate stupidity is never good to see (I certainly hope EVERY reputable site has checked their security protocols by now, they should have when Cerus got outed most recently - corporate stupidity is not rare, though, so...). I don't think it'd be a bad idea to email sites you play on and ask them whether they've done due diligence in light of the PTR outings of Cereus and Cake.
I don't play on cake, never have, never planned to - so my level of outrage is lower (I played very low volume on UB for a long time, no longer). In addition, I'm not aware of any huge problems/scandals/etc. on cake prior to this - UB/AP/Cereus had serious problems before their security problem was outed).
CC doesn't have any games on cake, so meh.