Never had a problem with any credit card until shortly after the compromise of PII at the MSP during their "all hands on deck" effort. Just because I didn't include credit card numbers on my 77R form does not mean that information gained from the forms could not be used with other information gained elsewhere does it? I'm no IT cybercrime guru so forgive me if I'm in error. Just seems odd that it takes place shortly after the MSP screw up.
If somebody has access to your name, address, SSN, DOB, etc. They aren't going to bother "stealing" your existing credit cards. They'll just try to get one of their own in your name, or one of other countless bad things they can do with that info. That being said, it would behoove yourself to look elsewhere for the credit card theft.