Account Breach

The attachment below contains an image of just a couple breached accounts. I don't know what your policy is about that, but I would suggest locking them and forcing the account owners to change their password via email perhaps?

Edit: Btw I haven't tested any of them, it might be fake, but I sent it either way.