Lauren WeinsteinSo let's be clear about this, we're being told that Musk ordered employees to give an outside reporter access to *everything* internally at #Twitter. Without exceptions. That would mean users' direct messages as well. Think about it.
Comrade Hound@lauren I"m pretty sure If I'm going to expect privacy on messages I send through another platform I'm going to use something cryptographical like Signal.
Jake Mannix@pbrane @skylos Many of the services that most consumers depend on for email, including spam control and malware scanning -- and more -- cannot effectively function in a practical way with end-to-end encryption. And just as a point of interest, Google is organized in a way as to make a hostile takeover essentially impossible. And access to user data there is extremely strictly controlled on a tight need to know basis, with detailed logging. I've worked inside Google twice, they really do care about protecting user data.
@skylos @lauren my point is not about “Google” specifically. Pick any company which provides email. Or imagine Google had antitrust which forced them to divest of GMail. My point is that DMs shouldn’t be considered “unsafe, never put anything important” while e-mail we magically pretend is fundamentally different and will be protected
@pbrane @lauren email is not and has never been secure. Its used for time sensitive multifactor sometimes but that is a reflection that only by adding the time factor is its security relevant - all that expires and is useless to hackers after minutes or sometimes hours- so post hoc release has no danger regarding the security utility of email delivered security tokens.