They 'plugged' the hole by introducing entry guards, now instead of being able to trace the hidden service in 60 seconds you can trace three nodes that are directly connected to it in 60 seconds. That solves the issue if the attacker is able to add two nodes to the Tor network, but doesn't do shit to protect from attackers who can simultaneously DDOS selected entry guards until they own one of the targets, or even easier simply send a court order to one of the identified entry guards or its infrastructure. If the guard is in USA they don't even need a warrant to do a trap and trace on it and then they can identify the hidden service from that. At the very best a normally configured hidden service is as anonymous as its least secure entry guard is from being hacked, at worst it is as anonymous as someone tracing to its entry guards in a minute and then using a trap and trace on one of them.