We just have been compromised, thousands of peoples likely are as well, more details updated IRL at the link

Update: Callum McMahon, who discovered this, wrote an explainer and postmortem going into greater detail: https://futuresearch.ai/blog/no-prompt-injection-required