Honestly this seems like a success story.

He recovered his funds and the attacker failed to steal, despite a successful social engineering campaign. It's true he lost the node of course, but with a sizeable amount on it, the funds are more important.

However vultr (afair one of the cheaper hosting providers) proved themselves incompetent here. A good recommendation to never use them for anything that even slightly matters.