I realise this is old news now, but I was looking at an old post by Slush relating to the hack on his pool (as a result of a vulnerability in Linode's web management interface).

The original topic is here.

I followed the coins a bit from the original destination address and found that they haven't really gone anywhere, beyond being recycled several times : https://blockexplorer.com/address/3HNSiAq7wFDaPsYDcUxNSRMD78qVcYKicw
Although it looks like today and yesterday they started being split up again.

Did anyone ever find out who perpetrated the hack ? Is anything being done to recover the coins or prevent them from being used ? Anything interesting someone can add ?

I'm just curious.