Well, he had stolen 80M worth of BTC in last bull run when it was on the peak and then returned it to people when it was worth 30M, so 50M robbery... It's obvious that you can expect everything from him
Maybe nicehash did this with purpose, uploaded infected version of phoenix miner to get passwords/private keys from people so he can rob someone again and now he passed the blame on phoenix miner dev