I am not in the knows about IT security at all, but isn't fucking up part of any security company? You can make shitty comments all you want but who says your company isn't the next one to fuck up?
Not wrong, but they fucked up due to incompetence, not just some random preventable accident.
From the technical details I've seen, just having a basic testing process/environment should have easily prevented this. That should be the bare minimum.