I don’t see how that would stop them, many custom systems get hacked. A custom forum would likely be even more vulnerable since they would have to be developing the security for it themselves rather than using something pre-existing that already has years of development.