Has everyone gotten this email, or did only the breached get it? Ugh...
Why would you not require your admins to use two-factor authentication?
Separate names with a comma.