From what I understand, the devs are withholding information about the PoS vulnerability because it could be used to attack other coins. Smart move IMO. I respect them for being considerate of all cryptocurrencies and not using it for PR.