Let me see if I understand this correctly. From what I just heard, not only was there no end-to-end testing done on the Security of the system, the ongoing "hot fixes" and "patches" being installed to improve functionality have not been tested either, and may in fact further compromise what little security the site ever had.
I know we have people here who are tech wizards, so please feel free to correct me on the above if I misunderstood it.....