It seems like the vulnrabilities in services like tor lie with the end user. Based on posts like these it seems like the tor protocal is still very secure in cases of only accessing tor hidden service's.