Is there a lesson learned?

 Hackers penetrated the social media company, gained "read-only" access to some of its systems containing its user's backup data and source code.

The backup data contains usernames, the salted passwords, email addresses, and user private messages.

Hackers by passed the text-based 2FA authentication by intercepting sysadmin authentication text messages.  Lesson learned... use token-based 2FA

Odoo text and image block