My exact thoughts, umm where is the root cause and explanation of the breach? They just reset 2FA as a reactionary measure. The attackers have compromised more than 2FA to be able to initiate withdrawals. This doesn’t add up.

If they knew, they'd share and talk about how they fixed it.

As a communications person, reading between the lines tell me they've got no idea what happened. Comforting!

yeah, the PR is totally unclear about how they got hacked, or if they even know