It is possible. Perhaps, they will just do a DOS(Denial Of Service) attack or messing up with the webpages and put a trojan somewhere in their servers. Some would even pick a lock containing CC's(Credit Card) infos and the likes of their database. We just have to live with them and ignore their inarticulate way of expressing themselves.