CZ: Safe’s response to the Bybit theft was vague, and many questions were not clearly explained

Odaily News Binance co-founder CZ posted on the X platform that he usually does not criticize other industry participants, but the incident report released by Safe used vague language to cover up the problem. After reading it, there are more questions than answers, including:
1. What does "hacking into the Safe {Wallet} developer machine" mean? How did they hack into this particular machine? Was it social engineering, viruses, etc?
2. How can a developer machine access the "Bybit operated account"? Some code is deployed directly from this developer machine to the production environment?
3. How did they cheat the Ledger verification step among multiple signers? Was it blind signature? Or did the signer not verify correctly?
Is $1.4 billion the largest address managed using Safe? Why don’t they target others?
5. What can other “self-custodial, multi-signature” wallet providers and users learn from this?