There are a lot of attack vectors in the lightning network. There are a lot of attack vectors in any and all software. Shit there are attack vectors in all distributions of Linux!

There will be patches and solutions, and there will be more bugs and vulnerabilities.

The good news is this: Lightning is a massive peer to peer network which means that an attack on Lightning will have limited effect as the network grows.

Imagine destroying a bridge or a path in the road. Now imagine a living breathing road which can just reform itself around the wreckage.

That's lightning. More specifically, it is a network built by, run by and supported by people. The same people will fix potholes, repair bridges and learn from structural mistakes as they find them.

Why I'm being vague? The 24hr issue you're talking about can already be avoided by building nodes in the network that enforce lower timeouts or that increase fees. The main reason it isn't a solved issue right now is: 1. It isn't completely breaking the network, so it's not a massive problem, 2. There are many solutions, picking the best one takes time, especially when there are short term workarounds already.