What's already known is that they fired the staff who prepared the report, and are presumably shutting down the agency. Is it really surprising that someone might have turned off the webserver before transferring the domain?
How far does it have to go before you assume malice? Do they have to tell you “I am malicious”? And if someone malicious is using the “dont admit it” strategy are you fucked?