Actually it would be a huge security risk if everyone posted their CC numbers publicly. Attackers could use their numbers to make purchases, and by the time the purchases show up on the statement the money is already gone.
Is it not clear that they're not complaining about the literal situation of credit card breach, but rather using it as analogy to being informed of a breach after the fact?
