There was no hack invasion. The article says that the hacker got a big number of API and credentials from users by using phishing attacks, virus and other methods. Thus, the big problem wasnt on the exchange, but on the users. The part which was Binances fault is that they couldnt block the massive withdrawal of 7k BTC before it happened.
Is there something I don't get here? If the stolen bitcoin was from vulnerable user's accounts as they have claimed, why was the withdrawal one massive transaction instead of multiple transactions of varying sizes from multiple wallets/accounts? Am I missing something here?