Baritus has claimed that CryptoAve was attacked with the Heartbleed vulnerability roughly one month prior to the vulnerability being uncovered and made public. If an individual had knowledge of this flaw before the the entire world, why would that individual choose to attack CryptoAve of all places? Why not go after a much larger website? Why not sell the knowledge of this vulnerability to the highest bidder?

This does not make any rational sense.

Sources:
http://digitalcoin.co/forums/index.php/topic,951.0.html
http://heartbleed.com/
http://digitalcoin.co/forums/index.php/topic,1010.0.html