A cyberattacker taunted the site about open security vulnerabilities, prompting a code review.