The security practice here is even worse than what you're describing, the company servers had been authorized to sign on behalf of the DAO, so only one compromise was required to get 5/9 validators.
It was decentralization theater. When a single entity can control the network (or funds), making multiple keys all controlled by that same entity is pointless.
