Salesforce-owned Heroku is performing a forced password reset on a subset of user accounts in response to last month's security incident while providing no information as to why they are doing so other than vaguely mentioning it is to further secure accounts. Last night, some Heroku users began receiving emails titled 'Heroku security notification - resetting user account passwords on May 4, 2022'