It sounds like Oles has just been informed of the potential compromise, despite it happening 6 days ago (Apr 23) and 5 days ago (Apr 24) for respectively slush's pool and bitcoin-central. He better has irrefutable proof that the compromise did not happen at the OVH level. Two highly technical clients (slush has been running a pool for more than 2 years so he has countered many attack attempts during this time, his mailbox linked to his OVH account is secured via OTP, etc) compromised at just the same time, with their OVH manager password reset with no explanation, and no email?