I have never used them, but I hoped they could give more information on how the hack occurred without any private key breach. I also understand that giving detailed information can serve as a blue print for other scammers and make them a target.
There's no detailed information available about this, and I doubt they'll release it publicly. As you mentioned, disclosing such info might give other hackers an opportunity to exploit it again, unless the vulnerability has already been fully patched.
On the bright side, the exchange has stated that they will fully cover all losses, so users shouldn't experience any loss of funds, just the temporary inconvenience.