Same really, and I'm going to apply
Hanlon's Razor on this particular case, until I'm proven wrong. I just don't think it would have made much sense to drop the facade now if he was scammer after putting so much effort on all his services, no matter how deeply flawed was their security from the get-go, and trying to build a reputation when he could have done it far earlier, probably get away with more money and when BTC wasn't at an all-time high so people would eventually forget about it.
1. He risked the security of thousands of bitcoins by having them stored in a hot-wallet, despite saying the contrary on several occasions.
2. He risked the security of thousands of bitcoins by using a hosting provider that has been known for months as problematic.
3. He let the services run for over 2weeks despite the knowledge of an attack that occurred and let people in the dark and received more deposits in this time.
Now after these points, do you really think he deserves any sympathy?
Of course its better to not run when you see that everybody got your real name already, that would be more then remotely stupid, Of course you would try to smoothing the offset, especially if you run a non-licensed financial institution that processed several millions of dollars worth.