Security firm's database hacked

According to The Register:
"Try this for irony: The website of web application security provider Barracuda Networks has sustained an attack that appears to have exposed sensitive data concerning the company's partners and employee login credentials, according to an anonymous post."
Barracuda's own application firewall appliance was offline for maintenance at the time, and hence failed to block the SQL injection attack.

"Bugger" said Barracuda's management.