The fact that Nord was hacked, in a pretty inconsequential way, isn't a big deal.
EVERYONE gets hacked, Yahoo, Google, MSN, name a large company they have probably been hit and this includes credit companies.
Where Nord really screwed up was they hid it for months and only came clean when they were confronted, and that's IF you believe them about how severe it was.
According to Nord, they private keys to one server were stolen, but only one server, which was supposedly not online yet. So even if they tried a man-in-the-middle attack, no one was using it. problem with this is that server is connected to others, being used or not and worse... it took them MONTHS to tell people, and at that time claimed they were still investigating but it was minimal, but this was only revealed after they were called on it. I can understand you want time to investigate, fine, do a preliminary and tell people. Instead, Nord went full PR mode and tried to brush it off.
Keep in mind, the people who made Nord what it was, are no longer running it. It was sold a while back.
By the way, there is very little you need to Torrent that you cannot get elsewhere, and in a more legal-ish manner.