There are two ways to contact them. One is using the C&C Support forums, which narrow_consist_drowse did (as you can see in some posts above). The other is the Discord server ( https://discord.gg/7Yp3HXg ). In Discord, Cervantes has responded in gen_chat, although his response does not clarify the situation at all:
Shouln't the news of multiple people using an email that isolated to just cnconline/revora be an indicator of something wrong? I didn't receive the signup on any of my other emails. It's exactly why I create a seperate email for every single website I sign up for. To make sure if I receive crap I'm not expecting on that one, assume all data with respective party is breached.
Cerv | SoftRam CEO
this is correct if this would be indeed be isolated while adresses specifically made for our service have been affected the same thing has been reported from our services that adresses specifially for that thing have been affected as well
thats why the main concern atm is potentially a shared 3rd party program being breached but that is not the case as i can tell at this moment