This case of stealing users money  in which Cryptopia's ex-employer was involved evidences how poor was the security architecture of  that exchange. Good exchange security means the storing funds in the cold vault with at least two independent  transfer approvals  to user account. If a single person managed to  copy secret keys that allowed him to  steal   money from exchange then it can only mean one thing - Cryptopia didn't care of security at all.