...attack on November 17th that overloaded our managed switches and disconnected the iSCSI connection to the SAN on BIPS servers. ... the attack caused vulnerability to the system, which has then enabled the attacker/s to gain access and compromise several wallets.
This it utter bullshit. Overloading a SAN 'caused vulnerability'? No that is nonsense. Please elaborate because this looks like BIPS is just making shit up.