It could be as simple as them hiring a coder to make their website therefore them funding the project. Maybe they have no idea what the coder is doing as they are looking at the final product (website) and are unaware of the other details.
If that is what happened they are not suited to operate a website such as crash because they will be reliant on the coder and would be open being scammed by any and all that have access to the server.
I'm afraid it's not that simple. As @devans pointed out, they were aware of the fact that much of the source code and scripts were copied from bustabit v1. And it was evident, even from the front end, that a good part of the content was plagiarized from the Bustabit website. However, it's their actions after being exposed that make them untrustworthy and deserve condemnation. They denied the allegations, fabricated lies, and changed the content on the website and removed their Github in an attempt to conceal the truth, rather than admitting, apologizing, and paying the license to the original developer.