Yes, attacker (or anyone else) could generate Bitcoin address from the public key. But in almost all cases, the Bitcoin address is known first before the public key. Bitcoin address become known after it receive Bitcoin or the owner share it to other people. But public key become known after you spend Bitcoin from the associated address, the owner share signed message to other people or the owner share the public key directly to other people.
So I would say that according to the question, his answer is correct in this case.
But the other two posts that you mentioned are really unhelpful wrong information, especially what he wrote about wallet entropy is completely wrong.