There's no proof that the DB has been breached (other than by these white hats). There's no additional corroboration; the ZDNet article just links to the VPNMentor website. ConnectiveRX has not commented on the matter.
imo it will either get swept under the rug or be a small blip at best.