I’ve checked back since, and they have not. That is not to say they couldn’t, though. Essentially all they would need to do is see who made API calls shortly after/before that time and revert the DB changes. Probably more work than they would probably get in return though.