If anything of the following happened this would be prevented:
[...]
- We should not use the official Bitcoin client because it's very hard to secure it without large investments and affecting instant withdrawals in large amounts.
Can you please explain how using some other software even a HSM could have prevented the wallet your site actively withdraws from at the request of users from being robbed by an attacker with root access to your servers?