I think every data sharing tool can be used in malicious way and this one logically isn’t an exception. But you can’t invalid a tool because someone use it maliciouly. It’s a tool to share data iin a privacy friendly way, period.